Cobalt Stike Beacon Detected – 180[.]184[.]71[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 8ffa156806f6de5616d493e5b2b90ee7
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8ffa156806f6de5616d493e5b2b90ee7SHA1: f82515e8f671762f7ec80be38fff330f6d4ce6abANALYSIS DATE: 2023-02-08T09:56:20ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – ab6b2ae0b2922ba977cd338c68b75ba0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: ab6b2ae0b2922ba977cd338c68b75ba0SHA1: e11dc44c5b92e9a4f3188946f5c3edb08b55bf52ANALYSIS DATE: 2023-02-08T09:56:15ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – blackmatter – 930b9c1792a539acdb051af34de91060
Score: 10 MALWARE FAMILY: blackmatterTAGS:family:blackmatter, ransomwareMD5: 930b9c1792a539acdb051af34de91060SHA1: 2cda394db71fc67905e31d9e8f4b88ef85a248dcANALYSIS DATE: 2023-02-08T09:11:44ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – smokeloader – 5291189417e7702824378a4ee78c1840
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5291189417e7702824378a4ee78c1840SHA1: bb0d48304546077175252b08f59f008695e9427eANALYSIS DATE: 2023-02-08T09:56:20ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 799c833e24fb71e0caeb546bc132a5e5
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 799c833e24fb71e0caeb546bc132a5e5SHA1: 474164be24010f1f969bd1b15090be9a1081ef97ANALYSIS DATE: 2023-02-08T09:56:30ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – db877af32192fdc5491af19fd5e30983
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: db877af32192fdc5491af19fd5e30983SHA1: 058787ff446ca75ccdaeb592dd68678d4f01553fANALYSIS DATE: 2023-02-08T10:04:17ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 9c2b5b98a1d4f06797789a0bd58cc722
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9c2b5b98a1d4f06797789a0bd58cc722SHA1: d7ae8cb4ddadd8be514c3ea035676a211f3e94a1ANALYSIS DATE: 2023-02-08T09:56:27ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 6cbd15ef3fa6a26bc90555d1073897ae
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6cbd15ef3fa6a26bc90555d1073897aeSHA1: 3bb9bd4ac387e338001e870fa31818f04fd34c3bANALYSIS DATE: 2023-02-08T09:56:21ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 0cecc0fdd634ffe7605faf597e6e8283
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:laplas, family:smokeloader, botnet:1001, backdoor, banker, clipper, discovery, isfb, persistence, ransomware, stealer, trojanMD5: 0cecc0fdd634ffe7605faf597e6e8283SHA1: 3bbdb6599d477bf73b5c0a679c418a80a0dbf141ANALYSIS...
Malware Analysis – persistence – 52b05e7505ad1a8b287ad019764574ac
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 52b05e7505ad1a8b287ad019764574acSHA1: bdbf153dde1200c80ae0c4cdbb9d43e155337d67ANALYSIS DATE: 2023-02-08T10:33:00ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – discovery – e9d243eb7e4f2576ff96c3143f2fb30d
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: e9d243eb7e4f2576ff96c3143f2fb30dSHA1: 22bf98b87e9f9adbd2c8e7f7737527a59eb81676ANALYSIS DATE: 2023-02-08T10:04:52ZTTPS: T1012, T1082, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – – 1e9d4af109f42baa420598b1cb38d307
Score: 1 MALWARE FAMILY: TAGS:MD5: 1e9d4af109f42baa420598b1cb38d307SHA1: 71db2886b1dde3e92bbab3af7be627f253532736ANALYSIS DATE: 2023-02-08T10:46:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – lockbit – 5761ee98b1c2fea31b5408516a8929ea
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, evasion, persistence, ransomwareMD5: 5761ee98b1c2fea31b5408516a8929eaSHA1: 4d043df23e55088bfc04c14dfb9ddb329a703cc1ANALYSIS DATE: 2023-02-08T10:56:37ZTTPS: T1490, T1059, T1107, T1491, T1112, T1018, T1060, T1082...
Malware Analysis – ransomware – 74392d410bd20b67ebd23bdc9b6ec372
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 74392d410bd20b67ebd23bdc9b6ec372SHA1: a05c73b391df124349eff51c2b32e54d6822edd8ANALYSIS DATE: 2023-02-08T11:36:17ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 4bfc92bc80045b031e7c14070143e1d3
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 4bfc92bc80045b031e7c14070143e1d3SHA1: 0d80e47173d8952f35edc76f0fc8c74b4829ee49ANALYSIS DATE: 2023-02-08T11:03:23ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – chaos – df96e57feb8b5e1265a93d409a77cf45
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: df96e57feb8b5e1265a93d409a77cf45SHA1: 5aa167a4755cf0b86385f8e62b5b403e72ccf203ANALYSIS DATE: 2023-02-08T10:52:04ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
TRENDnet TEW-811DRU command execution | CVE-2023-0638
NAME__________TRENDnet TEW-811DRU command executionPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TRENDnet TEW-652BRP could allow a remote attacker to execute arbitrary commands on the...
Linux Kernel code execution | CVE-2023-0045
NAME__________Linux Kernel code executionPlatforms Affected:Linux KernelRisk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Linux Kernel could allow a remote attacker to execute arbitrary...
TOTOLINK T8 default account | CVE-2023-24155
NAME__________TOTOLINK T8 default accountPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TOTOLINK T8 contains default hardcoded credentials, caused by a flaw in...
Daily Vulnerability Trends: Wed Feb 08 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-44268ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG...
Malware Analysis – djvu – bcde1dc8e93f8b260586afff22acce04
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:laplas, family:smokeloader, botnet:1001, backdoor, banker, clipper, discovery, isfb, persistence, ransomware, stealer, trojanMD5: bcde1dc8e93f8b260586afff22acce04SHA1: 2faba3fd359f9bc0e47c1b06f01cd16029b60064ANALYSIS...
Malware Analysis – djvu – 7b2adf17b3cfe12e19ec2db76a1529cc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:laplas, family:smokeloader, botnet:1001, backdoor, banker, clipper, discovery, isfb, persistence, ransomware, stealer, trojanMD5: 7b2adf17b3cfe12e19ec2db76a1529ccSHA1: ffcb202abd02838b2c5f8469cdbfba4f3156f47cANALYSIS...
Malware Analysis – smokeloader – 7f2d28e3c305aa30e921a8eb72a1300f
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 7f2d28e3c305aa30e921a8eb72a1300fSHA1: 289d3bebdf2950ae5a32da78a6220df29c3ecd34ANALYSIS DATE: 2023-02-08T03:36:01ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
