Cobalt Stike Beacon Detected – 43[.]138[.]236[.]103:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]0[.]192[.]16:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]43[.]12[.]106:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]92[.]217[.]197:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ermac – 72b3faff0779e1ddaef3a317fbefa29c
Score: 10 MALWARE FAMILY: ermacTAGS:family:ermac, banker, evasion, infostealer, ransomware, trojanMD5: 72b3faff0779e1ddaef3a317fbefa29cSHA1: 6af79ef669a9250ae2599348f103f772817c88a2ANALYSIS DATE: 2022-12-13T10:41:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 71b38cbdfd2391a63cfb85818ecc42a8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 71b38cbdfd2391a63cfb85818ecc42a8SHA1: 708d1da006924898eddf09bddc86d4c738103d41ANALYSIS DATE: 2022-12-13T10:41:19ZTTPS: T1222, T1082, T1053, T1012, T1060, T1112,...
Malware Analysis – smokeloader – 5d041a4006ed3f18eef822470c83ed9c
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5d041a4006ed3f18eef822470c83ed9cSHA1: 14d269a9c95ecd7a643fe7f5487ef468986f5d9dANALYSIS DATE: 2022-12-13T11:57:40ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – dcrat – b5edc62fc06a612dc1edfaa0e6fdaa35
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:1808, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Twitter says recently leaked user data are from 2021 breach
Twitter confirmed that the recent leak of members’ profile information resulted from the 2021 data breach disclosed in August 2022....
Daily Vulnerability Trends: Tue Dec 13 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-3602A buffer overrun can be triggered in X.509 certificate verification, specifically in...
Cuba Ransomware Victim: 2networkit
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Malware Analysis – djvu – 27b2b0f56a96792e4a87799bc5983d45
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:1808, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 27b2b0f56a96792e4a87799bc5983d45SHA1: 5f18ed76dd5cb6b6820e8384e63d324771227aa6ANALYSIS DATE:...
Malware Analysis – djvu – e4abac89f0c02ab08125acc019535b2e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: e4abac89f0c02ab08125acc019535b2eSHA1: e9d43e1c239006b102e4c741523be38e80d082f3ANALYSIS DATE: 2022-12-13T05:25:03ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – ad11601c8003994fea9cf502f77cefd8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: ad11601c8003994fea9cf502f77cefd8SHA1: 78764391ee3ebf81d09b5def7a4436a07bd4cd7bANALYSIS DATE: 2022-12-13T05:43:45ZTTPS: T1005, T1081, T1060, T1112, T1222, T1082,...
Malware Analysis – lockbit – 38a0313aaad67d4c34ef96225c5c4603
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 38a0313aaad67d4c34ef96225c5c4603SHA1: 88bad08303135cfa65efc1b505e993b917071104ANALYSIS DATE: 2022-12-13T04:33:06ZTTPS: T1490, T1046, T1082, T1107, T1060, T1112 ScoreMeaningExample10Known...
Malware Analysis – djvu – 31ab55838ad60dcce8fc22ff24614d76
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:1808, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 31ab55838ad60dcce8fc22ff24614d76SHA1: 1e33acddb01d65ddd1dfd0a7c96de5537e84b82bANALYSIS DATE:...
Cobalt Stike Beacon Detected – 43[.]142[.]31[.]225:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 62[.]204[.]41[.]171:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]216[.]146:8082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 79[.]137[.]207[.]137:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 117[.]50[.]184[.]22:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]116[.]101[.]84:89
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]142[.]187:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]212[.]49[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
