CISA: FBI and CISA Publish a PSA on Information Manipulation Tactics for 2022 Midterm Elections
FBI and CISA Publish a PSA on Information Manipulation Tactics for 2022 Midterm Elections Title: FBI and CISA Publish a PSA...
Fortinet urges customers to immediately fix a critical authentication bypass flaw in FortiGate and FortiProxy
Fortinet addressed a critical authentication bypass vulnerability that impacted FortiGate firewalls and FortiProxy web proxies. Fortinet addressed a critical authentication...
Wakanim – 6,706,951 breached accounts
In August 2022, the European streaming service Wakanim suffered a data breach which was subsequently advertised and sold on a...
Bhinneka – 1,274,340 breached accounts
In early 2020, the Indonesian consumer electronics website Bhinneka suffered a data breach that exposed almost 1.3M customer records. The...
Cloudfox – Automating Situational Awareness For Cloud Penetration Tests
CloudFox helps you gain situational awareness in unfamiliar cloud environments. It’s an open source CloudFox is designed to be executed...
Cobalt Stike Beacon Detected – 121[.]5[.]72[.]218:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Black Basta Ransomware Victim: MERCOLA
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 222[.]161[.]59[.]29:666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]224[.]137[.]154:8084
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 9d9da4319e0fff70db698857b74a797e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 9d9da4319e0fff70db698857b74a797eSHA1: 908841de7d76f4931dd62da3ab1b208f1b5b9cefANALYSIS DATE: 2022-10-07T08:09:25ZTTPS:...
Malware Analysis – smokeloader – 9d9da4319e0fff70db698857b74a797e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9d9da4319e0fff70db698857b74a797eSHA1: 908841de7d76f4931dd62da3ab1b208f1b5b9cefANALYSIS DATE: 2022-10-07T08:03:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 43[.]142[.]147[.]186:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]112[.]185:11
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 188[.]241[.]240[.]137:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]13:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – ffa9434c90b194b32d5ec9ad565ac875
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ffa9434c90b194b32d5ec9ad565ac875SHA1: b53d13666b21224c4960688d15b80a30e2b27e6dANALYSIS DATE: 2022-10-07T08:12:50ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – djvu – f456b83895119b2e6aca1422df7aa11b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f456b83895119b2e6aca1422df7aa11bSHA1: 3d9c11bf2edae9e7aedd0c4ff160ce0322b7a5faANALYSIS DATE: 2022-10-07T08:31:58ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – smokeloader – 0c46d0619219da90a35d94bcf4d7e094
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0c46d0619219da90a35d94bcf4d7e094SHA1: 43cf7800e5bcdeb439cff1c230a5681682fbc03bANALYSIS DATE: 2022-10-07T08:31:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 0c46d0619219da90a35d94bcf4d7e094
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0c46d0619219da90a35d94bcf4d7e094SHA1: 43cf7800e5bcdeb439cff1c230a5681682fbc03bANALYSIS DATE: 2022-10-07T08:43:10ZTTPS:...
Cobalt Stike Beacon Detected – 174[.]137[.]49[.]238:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 14[.]225[.]205[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]108[.]216[.]93:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]52[.]130[.]164:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 79afe5212a85f53a83ec1cf4d3ef1cb1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 79afe5212a85f53a83ec1cf4d3ef1cb1SHA1: ede4d779271049a10d83fbd9fbc1394d1b32db47ANALYSIS DATE: 2022-10-07T09:16:28ZTTPS: T1005, T1081, T1012, T1082,...
