BlackCat/ALPHV Ransomware Victim: NextGen
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – djvu – 1e61d2b0a41e30bb734ddbe53bb66880
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1e61d2b0a41e30bb734ddbe53bb66880SHA1: 26dc0624b6d0286043cf55c3299bd14161f9e19fANALYSIS DATE: 2023-01-19T03:00:52ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – smokeloader – 0ed65c594991f0a57f7209966ce2c081
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0ed65c594991f0a57f7209966ce2c081SHA1: 101e646cddf7eb518ed185e1946b3a2715b21057ANALYSIS DATE: 2023-01-19T03:05:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – bf9859562a838793808f162f59a451a6
Score: 3 MALWARE FAMILY: TAGS:MD5: bf9859562a838793808f162f59a451a6SHA1: 6edf259df3a9031428ca8a2e56c4da1caff643afANALYSIS DATE: 2023-01-19T03:46:06ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 3ab3ff502bb6d6cda926109ce676fcbe
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, botnet:test, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – 1aef2be1b15c67a54cbc186937e4066d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, botnet:test, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – – 6e5b443ec0bb37d7d7a332ee1de244b0
Score: 3 MALWARE FAMILY: TAGS:MD5: 6e5b443ec0bb37d7d7a332ee1de244b0SHA1: 0973b62f00138342e2f605fd04fe66a408611ab5ANALYSIS DATE: 2023-01-19T03:49:06ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – discovery – e2c876ff5b1f24b59d928e595234cdef
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, vmprotectMD5: e2c876ff5b1f24b59d928e595234cdefSHA1: 82d06b09b2a8c514929aab293242d4796d4ee39fANALYSIS DATE: 2023-01-19T04:56:27ZTTPS: T1031, T1562, T1489, T1222, T1112, T1082, T1053, T1102,...
Malware Analysis – djvu – 7aeb0ae6802928053059780fd330e216
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 7aeb0ae6802928053059780fd330e216SHA1: a1ce523f846ef964c3d092c155a4001a0110a513ANALYSIS DATE: 2023-01-19T05:34:29ZTTPS: T1222, T1082, T1053, T1130, T1112,...
Malware Analysis – djvu – 81df0f3908f65a7a45c7a927a846f0c0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 81df0f3908f65a7a45c7a927a846f0c0SHA1: 721c8a579f4cd376f2e286d29f517b0eb99aa018ANALYSIS DATE: 2023-01-19T05:35:02ZTTPS: T1082, T1053, T1130, T1112, T1060,...
Malware Analysis – djvu – 14e34d7cd3c4a50e368fe65dd20cf05f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 14e34d7cd3c4a50e368fe65dd20cf05fSHA1: 1b776fa4abe2c2b4429cc9460696c1bb4339ea70ANALYSIS DATE: 2023-01-19T05:33:20ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – smokeloader – 6711a1ac45718cb729e8698131d914bc
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6711a1ac45718cb729e8698131d914bcSHA1: ccacfb714bd9de343d6e923a54736fadda5980cdANALYSIS DATE: 2023-01-19T05:33:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 173[.]255[.]211[.]246:9090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]14[.]198[.]89:8022
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 140[.]143[.]232[.]178:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]149[.]194:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]34[.]192:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 138[.]68[.]117[.]60:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]89[.]35:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 212[.]113[.]106[.]118:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 7d68b3d13d8ed577eca938497c0ca4f5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, botnet:testedpotikuodated, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan,...
Malware Analysis – evasion – 8d4e6346abd31f9c95fac221bc1519a6
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: 8d4e6346abd31f9c95fac221bc1519a6SHA1: 0545185194d39329a5297d556c2bad5ae2761e0cANALYSIS DATE: 2023-01-18T20:56:21ZTTPS: T1012, T1120, T1082, T1060, T1031 ScoreMeaningExample10Known badA malware...
Malware Analysis – discovery – 0317c28227aa7cd3597898b9288f6821
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 0317c28227aa7cd3597898b9288f6821SHA1: b54a5026e8201ec89f4d8f2607b7a16246ca2772ANALYSIS DATE: 2023-01-18T21:05:23ZTTPS: T1012, T1120, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 835657083a6f7e48c2ba89f8f2f0e027
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:rhadamanthys, family:vidar, botnet:19, botnet:testedpotikuodated, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, vmprotectMD5: 835657083a6f7e48c2ba89f8f2f0e027SHA1: bf11700d337de55346889b8d4c4234b72a102a2aANALYSIS...
