Text4Shell, a remote code execution bug in Apache Commons Text library
Researcher discovered a remote code execution vulnerability in the open-source Apache Commons Text library. GitHub’s threat analyst Alvaro Munoz discovered a remote...
Cobalt Stike Beacon Detected – 20[.]205[.]142[.]50:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]100[.]47[.]35:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]60[.]161[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]55[.]243[.]110:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]224[.]17[.]133:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]59[.]204[.]196:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]32[.]29[.]117:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]193[.]101[.]166:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]59[.]127:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]93[.]241[.]137:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]213[.]50[.]3:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]236[.]114[.]195:9030
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]158[.]94[.]217:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
TeamTNT Returns – or Does It?
Our honeypots caught malicious cryptocurrency miner samples targeting the cloud and containers, and its routines are reminiscent of the routines...
Malware Analysis – evasion – 90c2df2630d849e48d89a14d846a11ec
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 90c2df2630d849e48d89a14d846a11ecSHA1: 9e841b75532d14642b201fe40108240fa94f9c0fANALYSIS DATE: 2022-10-19T13:36:38ZTTPS: T1004, T1112, T1491, T1060, T1490, T1158, T1082, T1012,...
Malware Analysis – evasion – 91ca4d468028506fa4e6df08b0051a4d
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 91ca4d468028506fa4e6df08b0051a4dSHA1: 08b701b622f931cc76869a2fca533945cb7d121fANALYSIS DATE: 2022-10-19T13:36:40ZTTPS: T1112, T1158, T1490, T1082, T1012, T1120, T1004, T1088,...
Malware Analysis – evasion – a1bb74424a908d9146d2e6ea73085794
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: a1bb74424a908d9146d2e6ea73085794SHA1: 82cb2648c5b82f627d28dfa252bc522fb83b078bANALYSIS DATE: 2022-10-19T13:36:42ZTTPS: T1491, T1112, T1158, T1042, T1091, T1060, T1004, T1012,...
Malware Analysis – evasion – a0b2ad17ab9d585d1d9d4c0af2eff801
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: a0b2ad17ab9d585d1d9d4c0af2eff801SHA1: 24b3b20b9e9ed6ecf28fe5d387c148d53c7a748bANALYSIS DATE: 2022-10-19T13:36:48ZTTPS: T1491, T1112, T1004, T1088, T1089, T1490, T1012, T1120,...
Malware Analysis – evasion – 9110f80c758332cc98341c620a652e9e
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 9110f80c758332cc98341c620a652e9eSHA1: 02a2bcec6c89f8edd242ba71988b3c7547a423d4ANALYSIS DATE: 2022-10-19T13:36:46ZTTPS: T1112, T1042, T1490, T1082, T1060, T1004, T1491, T1088,...
Malware Analysis – evasion – a0d212174dca661030a23754932bd8e7
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: a0d212174dca661030a23754932bd8e7SHA1: fa7491b6745193677a3aa594f496cd4c8082da61ANALYSIS DATE: 2022-10-19T13:36:44ZTTPS: T1490, T1082, T1112, T1042, T1088, T1089, T1060, T1158,...
Malware Analysis – djvu – 67712f7a17f7906b7b3cd9818835a052
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 67712f7a17f7906b7b3cd9818835a052SHA1: ddd4790137526d100718f86370ee35e9ebc25989ANALYSIS DATE: 2022-10-19T14:02:34ZTTPS: T1060, T1112, T1222, T1082, T1053 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 6feb057de82af585167980e08a15baeb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 6feb057de82af585167980e08a15baebSHA1: f87328bbba428e7cb30be9f708abfccdbb9a99f0ANALYSIS DATE: 2022-10-19T14:01:23ZTTPS: T1060, T1112, T1222, T1082, T1053 ScoreMeaningExample10Known badA malware...
Malware Analysis – – a0f109d99939a47b93c03feea25c86a7
Score: 1 MALWARE FAMILY: TAGS:MD5: a0f109d99939a47b93c03feea25c86a7SHA1: d0d703c5fbe44559e778da03b049db7058e91a80ANALYSIS DATE: 2022-10-19T14:17:41ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
