Cobalt Stike Beacon Detected – 167[.]235[.]157[.]186:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 88[.]119[.]175[.]149:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 216[.]146[.]25[.]20:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – persistence – 425cbeecc22af1cbd3683702bad47d2b
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 425cbeecc22af1cbd3683702bad47d2bSHA1: d9df389bf4f5699414ae265bab820d16c97153f4ANALYSIS DATE: 2023-01-23T21:20:34ZTTPS: T1060, T1130, T1112, T1012, T1082, T1120 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – cc426856236596a24223d23bcb84d8c8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: cc426856236596a24223d23bcb84d8c8SHA1: 03c225a58255b94fd7917f304af3a9bc172ee681ANALYSIS DATE: 2023-01-23T21:03:36ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – djvu – c93dffef8975b746c23b3dfa89fab68d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: c93dffef8975b746c23b3dfa89fab68dSHA1: 526e90755a469488a6fdfc90158d7c23a3f8db94ANALYSIS DATE: 2023-01-23T21:23:26ZTTPS: T1222, T1005, T1081, T1082,...
Malware Analysis – ransomware – ddbb68a048aa1dc2d70def4ed51d7f72
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ddbb68a048aa1dc2d70def4ed51d7f72SHA1: 9ecd8e12cf00616b05cdb8103eb44af9bec6ffe2ANALYSIS DATE: 2023-01-23T23:30:19ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 1b2d5ea242f2354691c62b680893df7a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1b2d5ea242f2354691c62b680893df7aSHA1: 77684b9079f760e75bbe3aa31d264150847e5de0ANALYSIS DATE: 2023-01-23T23:00:30ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – lockbit – 01ccead2e9497ce04ab0c2531320224d
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 01ccead2e9497ce04ab0c2531320224dSHA1: 9b7ebc4d8f97b0e7463a382f3b748a4be48a06a1ANALYSIS DATE: 2023-01-23T21:24:54ZTTPS: T1490, T1059, T1107, T1082,...
Malware Analysis – asyncrat – 8b14bf467df11d832cfbd95c3c2a8ee9
Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, ransomware, ratMD5: 8b14bf467df11d832cfbd95c3c2a8ee9SHA1: 98372efcfe106531e8cd4e3acb5372865f49ee73ANALYSIS DATE: 2023-01-23T23:31:10ZTTPS: T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Hackers now use Microsoft OneNote attachments to spread malware
Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used...
GTA Online bug exploited to ban, corrupt players’ accounts
Grand Theft Auto (GTA) Online players report losing game progress, in-game money being stolen, and being banned from game servers...
Massive ad-fraud op dismantled after hitting millions of iOS devices
A massive ad fraud operation dubbed 'Vastflux' that spoofed more than 1,700 applications from 120 publishers, mostly for iOS, has been...
Google Ads invites being abused to push spam, adult sites
Google Ads invites are being abused to deliver email messages promoting spam and sex websites to users who are otherwise...
FanDuels warns of data breach after customer info stolen in vendor hack
The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security...
CISA warns of critical ManageEngine RCE bug exploited in attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a remote code execution (RCE) affecting most Zoho ManageEngine products to...
Riot Games hacked, delays game patches after security breach
Riot Games, the video game developer and publisher behind League of Legends and Valorant, says it will delay game patches...
WhatsApp fined €5.5 million by Irish DPC for GDPR violation
The Irish Data Protection Commission (DPC) has fined WhatsApp Ireland €5.5 million ($5.95m) after confirming that the messaging service violated...
HackerOne Bug Bounty Disclosure: xss-on-link-and-window-openerbypisarenko
Programme HackerOne Slack Slack Submitted by pisarenko pisarenko Report XSS on link and window.opener Full Report A considerable amount of...
LockBit 3.0 Ransomware Victim: payroll2u[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Vice Society Ransomware Victim: CloudCall &
emoney Home Loans
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Vice Society Ransomware Victim: Monmouth College
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 162[.]19[.]155[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]186[.]9:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
