Cobalt Stike Beacon Detected – 199[.]195[.]248[.]79:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Royal Ransomware Victim: Rech Informatica Ltda
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: Aegea Group companies
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Cobalt Stike Beacon Detected – 121[.]4[.]138[.]60:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]5[.]94:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]74[.]115[.]207:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]131[.]193:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]29[.]162[.]38:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]41[.]95:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]131[.]94[.]164:7443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]75[.]247[.]178:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 31779136196425ada7f38369086e99cc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 31779136196425ada7f38369086e99ccSHA1: 65121e085572620c45d16e6683663ead301e5b03ANALYSIS DATE: 2022-12-23T09:12:06ZTTPS: T1005, T1081, T1012, T1082, T1222, T1053,...
Malware Analysis – smokeloader – 2d5f1f172ee74e3ad998059669e9e39e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2d5f1f172ee74e3ad998059669e9e39eSHA1: 0ea9cf83108b57219d3c784ac1589ee5551c90a4ANALYSIS DATE: 2022-12-23T10:31:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – f5fd1959bf55c5a97a4267c676b6a781
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f5fd1959bf55c5a97a4267c676b6a781SHA1: 7f3914e91ea1c1290b3cc768cbdaa3dd547a2844ANALYSIS DATE: 2022-12-23T10:02:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – e8af5b0c9d7b8d7f7357ee0fd9ea0218
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: e8af5b0c9d7b8d7f7357ee0fd9ea0218SHA1: 58a6671307eda70e55ea15dbc46d32769e6b2823ANALYSIS DATE: 2022-12-23T10:15:15ZTTPS: T1082, T1130, T1112, T1060, T1222 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – f667cb81fe70b79d3651127cbf34c1f3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: f667cb81fe70b79d3651127cbf34c1f3SHA1: 2aba0f68896664c65ffc6e166b051af73881005bANALYSIS DATE: 2022-12-23T10:20:38ZTTPS: T1005, T1081, T1012, T1082, T1053, T1060,...
Microsoft spotted an upgraded variant of the Zerobot botnet that spreads by exploiting Apache vulnerabilities
Microsoft spotted an upgraded variant of the Zerobot botnet that spreads by exploiting Apache vulnerabilities.Microsoft Threat Intelligence Center (MSTIC) researchers...
The nbsp data breach suffered by LastPass in August may have been more severe than previously thought
The data breach suffered by LastPass in August 2022 may have been more severe than previously thought.In August password management software...
North Korea linked threat actors have stolen an estimated billion worth of cryptocurrency and other virtual assets in the past five years
North Korea-linked threat actors have stolen an estimated $1.2 billion worth of cryptocurrency and other virtual assets in the past...
Malware Analysis – ransomware – 4d089f6d15b92693578b6f3ad414c9e7
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 4d089f6d15b92693578b6f3ad414c9e7SHA1: 120f47d7510cbd64728ef53d4d2fa1b0a84e1d09ANALYSIS DATE: 2022-12-23T10:44:04ZTTPS: T1012, T1120, T1082, T1005, T1081, T1107, T1490, T1491, T1112...
Malware Analysis – djvu – c533ae1075eb8cdcf56416d0759733f8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: c533ae1075eb8cdcf56416d0759733f8SHA1: 24712686ecd9715c2d36cd830dd4ae07eede0c0aANALYSIS DATE: 2022-12-23T10:32:50ZTTPS: T1005, T1081, T1012, T1222, T1082, T1060,...
Malware Analysis – wannacry – 8e6bfea06cb00553ee29b3822b349bd6
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 8e6bfea06cb00553ee29b3822b349bd6SHA1: 111be7f3c2978cbe22f4098eadff995a8484f769ANALYSIS DATE: 2022-12-23T11:20:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – wannacry – c475b82f1e0b421e051622f034b1d5e3
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: c475b82f1e0b421e051622f034b1d5e3SHA1: e1cfa940659f8dcf46098f67ec3de711e7123cb5ANALYSIS DATE: 2022-12-23T11:21:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Lastpass: Hackers stole customer vault data in cloud storage breach
LastPass revealed today that attackers stole customer vault data after breaching its cloud storage earlier this year using information stolen...
