Cobalt Stike Beacon Detected – 198[.]211[.]9[.]165:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]64[.]199:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]121[.]2:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]220[.]198[.]212:100
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 209[.]97[.]165[.]215:5454
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – a91aaf3dfb34b6f450d2a07f95f04fd4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a91aaf3dfb34b6f450d2a07f95f04fd4SHA1: 5483a5d4ec4c5f35f845f25bcae01d8903735e0cANALYSIS DATE: 2023-02-27T20:59:14ZTTPS: T1222, T1053, T1005, T1081, T1060,...
Malware Analysis – persistence – 7751da230d7676b1fc2fc7585cc51fcb
Score: 7 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 7751da230d7676b1fc2fc7585cc51fcbSHA1: ee19393e64b25da8a4cdd48221a71854aa0e3a74ANALYSIS DATE: 2023-02-27T20:58:22ZTTPS: T1005, T1081, T1491, T1112, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 4f3f6dcf9708921f89402fca1786ce69
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4f3f6dcf9708921f89402fca1786ce69SHA1: b209a7639b33c4a143a1165cde74432e5e3ea9f0ANALYSIS DATE: 2023-02-27T22:16:54ZTTPS: T1053, T1012, T1082, T1005, T1081,...
Malware Analysis – lampion – 68ba045e1427d63d03660ef2d88584d0
Score: 10 MALWARE FAMILY: lampionTAGS:family:lampion, banker, discovery, persistence, ransomware, trojanMD5: 68ba045e1427d63d03660ef2d88584d0SHA1: a3e9bd9adddf1aaaaff03cd69a7128e6fc774977ANALYSIS DATE: 2023-02-27T22:16:25ZTTPS: T1112, T1042, T1060, T1012, T1120, T1082,...
Malware Analysis – smokeloader – 917ec402257747008f49ca8ef2cbb68d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 917ec402257747008f49ca8ef2cbb68dSHA1: 1e24cb0554b0889f8f738af9ca7f0ba3bbe08b9cANALYSIS DATE: 2023-02-27T23:56:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 284188684107ced16015103e14cd8a43
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, pyinstaller, ransomware, stealer, trojan, vmprotectMD5: 284188684107ced16015103e14cd8a43SHA1: 3b41c2744db958f5fa7951be4e60ad396699e4cbANALYSIS DATE: 2023-02-27T21:07:25ZTTPS: T1012,...
HackerOne Bug Bounty Disclosure: messages-can-still-be-seen-on-conversation-after-expiring-when-cron-is-misconfiguredbyctulhu
Programme HackerOne Nextcloud Nextcloud Submitted by ctulhu ctulhu Report Messages can still be seen on conversation after expiring when cron...
Malware Analysis – evasion – b7f75322a5ae47dcbc0ae9c35930181f
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b7f75322a5ae47dcbc0ae9c35930181fSHA1: c999e7c030a56b39090a5506413565cead8fa779ANALYSIS DATE: 2023-02-27T15:02:34ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – f440f4b68d8a753de17f40da8067c74c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: f440f4b68d8a753de17f40da8067c74cSHA1: fec25fe57dae2be79962fa9a3f79e62472be6d00ANALYSIS DATE: 2023-02-27T16:10:02ZTTPS: T1060, T1112,...
Malware Analysis – smokeloader – 32e664bc1683bf60db15e50df9d04d94
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 32e664bc1683bf60db15e50df9d04d94SHA1: 2f58984ab4b88eff4cf3271a9b3d9b8a0abed2ecANALYSIS DATE: 2023-02-27T15:50:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 14e05bdb6fb15db02e5247582084999a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 14e05bdb6fb15db02e5247582084999aSHA1: c462df95f587ad8e7ab3f703e912aaf12762d03dANALYSIS DATE: 2023-02-27T15:11:02ZTTPS: T1012, T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – d68fc03f5679d210f0a3cd70cc8c13e1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d68fc03f5679d210f0a3cd70cc8c13e1SHA1: a4ad2eddb55670b99a2e628205911b5ba21686e4ANALYSIS DATE: 2023-02-27T15:39:56ZTTPS: T1222, T1053, T1005, T1081, T1082,...
Malware Analysis – smokeloader – aa058c705e64a433166d975f4e9a5261
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: aa058c705e64a433166d975f4e9a5261SHA1: d286ebd54477fef7a45cc12edfb05ae0197bbdaaANALYSIS DATE: 2023-02-27T16:29:08ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – bfc03a90243efb1bbb02f65bce3b02a2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: bfc03a90243efb1bbb02f65bce3b02a2SHA1: 1f3d840f29f5595f7db3465fa4b09b397b38f009ANALYSIS DATE: 2023-02-27T16:30:56ZTTPS: T1060, T1112, T1053, T1005, T1081,...
Malware Analysis – smokeloader – 35ccb4adbce0d03c3409df6207401429
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 35ccb4adbce0d03c3409df6207401429SHA1: 525be7f6caed949ddfa929c0a2ee75b26ba57c64ANALYSIS DATE: 2023-02-27T16:29:08ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 4ee7170c8ae51589936baaa60bfca7b7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4ee7170c8ae51589936baaa60bfca7b7SHA1: 98eecd829b63e29452f6f9bb40c01303ed4d58e1ANALYSIS DATE: 2023-02-27T16:37:27ZTTPS: T1222, T1082, T1012, T1053, T1005,...
Malware Analysis – djvu – 5c1055bd70425b00ccdd27fb4568aa3b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, pyinstaller, ransomware, spyware, stealer, trojan, vmprotectMD5: 5c1055bd70425b00ccdd27fb4568aa3bSHA1: 5643011b8cc2ed9d83d5ed3d4f508bc7bbedf811ANALYSIS DATE: 2023-02-27T17:30:36ZTTPS:...
Malware Analysis – smokeloader – 3423b310f4725f7d0954f38d346eff1e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3423b310f4725f7d0954f38d346eff1eSHA1: 475cdb695f781e4cbd29c5c601d52377d96503e9ANALYSIS DATE: 2023-02-27T17:00:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – quasar – 04c0f75fb7507ed1d87c6946698ec064
Score: 10 MALWARE FAMILY: quasarTAGS:family:quasar, evasion, persistence, ransomware, spyware, trojanMD5: 04c0f75fb7507ed1d87c6946698ec064SHA1: 577911bb677fbf7870209d4417e277e89b1263feANALYSIS DATE: 2023-02-27T16:44:51ZTTPS: T1082, T1088, T1089, T1112, T1031, T1060,...
