Cobalt Stike Beacon Detected – 101[.]43[.]240[.]159:801
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]116[.]160[.]60:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Daily Vulnerability Trends: Mon Dec 26 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-32250net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able...
Malware Analysis – dcrat – 11def98517c93e2a955df827ed88a3a2
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, infostealer, rat, spyware, stealerMD5: 11def98517c93e2a955df827ed88a3a2SHA1: 12d175a93a7b161bd8d4d6b489e95f15e34ad283ANALYSIS DATE: 2022-12-25T20:57:58ZTTPS: T1005, T1081, T1082, T1053, T1130, T1112 ScoreMeaningExample10Known...
Malware Analysis – amadey – c8c9b5a1191f94ad982039badaa0ca50
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c8c9b5a1191f94ad982039badaa0ca50SHA1: b6402f9450b32a5c1a1721195062e9e03c8ba504ANALYSIS DATE: 2022-12-25T21:31:18ZTTPS: T1222,...
Malware Analysis – djvu – e6c155f10839a589cbbd3cd0b56bd8de
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: e6c155f10839a589cbbd3cd0b56bd8deSHA1: 5d2e4b74764ca85fead3b6e555657f2b609da3b4ANALYSIS DATE: 2022-12-25T21:07:21ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 011233d5915f5be50e2230f34741359a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 011233d5915f5be50e2230f34741359aSHA1: da8a2eee26fc9eef7bfdb96a3e6888e55ae11e25ANALYSIS DATE: 2022-12-25T21:33:43ZTTPS: T1082, T1053, T1130, T1112, T1060, T1222 ScoreMeaningExample10Known badA...
Malware Analysis – eternity – b4865c2d9f23b7df972ab8a65e5e94b6
Score: 10 MALWARE FAMILY: eternityTAGS:family:eternity, evasion, ransomwareMD5: b4865c2d9f23b7df972ab8a65e5e94b6SHA1: bc3ecb00be5d812b72062be75ce7840bf1a5d9b3ANALYSIS DATE: 2022-12-25T21:32:27ZTTPS: T1082, T1012, T1018, T1053 ScoreMeaningExample10Known badA malware family was...
Cobalt Stike Beacon Detected – 91[.]215[.]85[.]132:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 6d931e465782a502fbdada661a16eebd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6d931e465782a502fbdada661a16eebdSHA1: 5dbeafc4ddf81321c5da8f32c80f6ad3c62c0247ANALYSIS DATE: 2022-12-25T22:18:59ZTTPS: T1060, T1112, T1222, T1012, T1082, T1005,...
Malware Analysis – djvu – ade885da982e26adc6b611ee6c226af0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: ade885da982e26adc6b611ee6c226af0SHA1: bc3772b05a374d5710fccfc819639ecbb1376facANALYSIS DATE: 2022-12-25T21:51:02ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – f882c7d3c006924ed8bf740054023408
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: f882c7d3c006924ed8bf740054023408SHA1: 58628fadce724d96810028bef9fb530cea4e0d9dANALYSIS DATE: 2022-12-25T22:27:25ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 6127455acbf104c83d6cc50815fc2316
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6127455acbf104c83d6cc50815fc2316SHA1: bca79f179b418b30f77a0c91c86c108213350461ANALYSIS DATE: 2022-12-25T21:37:27ZTTPS: T1222, T1053, T1005, T1081, T1012, T1082,...
Cobalt Stike Beacon Detected – 54[.]154[.]81[.]140:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]18[.]35:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 199[.]195[.]248[.]79:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]211[.]60[.]243:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – dcrat – eb93bb98b4e0d01353c5706cd04decc7
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, discovery, evasion, exploit, infostealer, persistence, rat, trojanMD5: eb93bb98b4e0d01353c5706cd04decc7SHA1: 1ab3a1414e2c2681c32c19f11e837720241d4511ANALYSIS DATE: 2022-12-25T23:14:30ZTTPS: T1053, T1060, T1112, T1004,...
Malware Analysis – amadey – ae6fa6373d4c7b484b67811f50dff0f5
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: ae6fa6373d4c7b484b67811f50dff0f5SHA1: 882bc23172d9b693a9cf3cc3fa4792df747ce125ANALYSIS DATE: 2022-12-25T23:04:55ZTTPS: T1012, T1082,...
Malware Analysis – djvu – decbd978afb892a6f27b6699f836c4cc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: decbd978afb892a6f27b6699f836c4ccSHA1: 884ba14ea35d330117d33fbccdae5facdc13e0eeANALYSIS DATE: 2022-12-25T23:30:58ZTTPS: T1060, T1112, T1222, T1012, T1005, T1081,...
Malware Analysis – amadey – d28df046a6e01beabd8b3e07848b0a43
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: d28df046a6e01beabd8b3e07848b0a43SHA1: 9db28ba915eb8e28e4714bf87b8b824a88741f1aANALYSIS DATE: 2022-12-25T23:33:59ZTTPS: T1012,...
Cobalt Stike Beacon Detected – 121[.]196[.]165[.]107:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]249[.]9[.]15:7788
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]19[.]165:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
