CISA: Cisco Releases Security Advisory for Unified CM and Unified CM SME
Cisco Releases Security Advisory for Unified CM and Unified CM SME Cisco released a security advisory for a vulnerability affecting...
Ghauri – An Advanced Cross-Platform Tool That Automates The Process Of Detecting And Exploiting SQL Injection Security Flaws
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws Requirements Python 3 Python...
Cobalt Stike Beacon Detected – 185[.]62[.]58[.]53:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]14[.]107[.]239:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Phishing and ransomware amongst biggest threats to charity sector
Phishing and ransomware amongst biggest threats to charity sector A new threat report published today reveals why the charity sector...
Malware Analysis – djvu – ae87f11bfca2d4569ba605b0177ceeca
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ae87f11bfca2d4569ba605b0177ceecaSHA1: 79f772b8ab8af8771b96fdc72e2409de2064ac03ANALYSIS DATE: 2023-01-20T09:44:54ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – banker – 9023dd6c78bdd6292590523d03c9aac2
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 9023dd6c78bdd6292590523d03c9aac2SHA1: 80dac26829e8ba29d51e37eb9a1ff26a37de949dANALYSIS DATE: 2023-01-20T09:06:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – ransomware – bff3bc6d526bee1844f08894b26c1c92
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: bff3bc6d526bee1844f08894b26c1c92SHA1: e703f5d5438d2dc0a06b6110305d21a4db804f9bANALYSIS DATE: 2023-01-20T09:40:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 107[.]189[.]13[.]130:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]235[.]183[.]165:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 212[.]113[.]106[.]118:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]242[.]63[.]91:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – 27768c1bd67420c2bda7cd2b3c6b6133
Score: 3 MALWARE FAMILY: TAGS:MD5: 27768c1bd67420c2bda7cd2b3c6b6133SHA1: 8a3b0445fdc854c742985ee65976c1b9b4790a1eANALYSIS DATE: 2023-01-20T10:30:07ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – 4e68cfad3f3cbef5406c90fd9e9d7931
Score: 1 MALWARE FAMILY: TAGS:MD5: 4e68cfad3f3cbef5406c90fd9e9d7931SHA1: 504d53957bbed8e1a612c791eec7abdd17bd15bcANALYSIS DATE: 2023-01-20T10:18:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – wannacry – 7bf2b57f2a205768755c07f238fb32cc
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 7bf2b57f2a205768755c07f238fb32ccSHA1: 45356a9dd616ed7161a3b9192e2f318d0ab5ad10ANALYSIS DATE: 2023-01-20T10:19:02ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – discovery – 26027b442df7212f436733b85e1a4aa2
Score: 9 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistence, ransomware, upxMD5: 26027b442df7212f436733b85e1a4aa2SHA1: ada45868d8f9f70b7a80f6ea0fcb5b7f347499c9ANALYSIS DATE: 2023-01-20T09:47:08ZTTPS: T1222, T1060, T1082, T1012, T1112, T1491 ScoreMeaningExample10Known...
Malware Analysis – ransomware – e81b53daabfd90faad65bae4c895e710
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e81b53daabfd90faad65bae4c895e710SHA1: 192a05898ea6b099d88448650b24bf1d17a51456ANALYSIS DATE: 2023-01-20T10:42:08ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 0c432d48d6c48b4e7cde6819997c675e
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 0c432d48d6c48b4e7cde6819997c675eSHA1: 61eef3e822ea71be38aa83f052fbfd3a13607273ANALYSIS DATE: 2023-01-20T11:30:10ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 831ae99e59ffcf50e5278171903694de
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 831ae99e59ffcf50e5278171903694deSHA1: 96ab52cf5c0b40aa10357d644c8eb26b778a0739ANALYSIS DATE: 2023-01-20T11:36:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – ed4fdb6a9120b4374f34ddb3585a8a7f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ed4fdb6a9120b4374f34ddb3585a8a7fSHA1: a6bb894ef720e4bb28def834cb03f503e7dd86abANALYSIS DATE: 2023-01-20T10:35:29ZTTPS: T1005, T1081, T1060, T1112,...
Oracle Fusion Middleware privilege escalation | CVE-2023-21846
NAME__________Oracle Fusion Middleware privilege escalationPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________An unspecified vulnerability in Oracle Fusion Middleware related to the Admin Security...
Oracle Hospitality Reporting and Analytics privilege escalation | CVE-2023-21828
NAME__________Oracle Hospitality Reporting and Analytics privilege escalationPlatforms Affected:Oracle Hospitality Reporting and Analytics 9.1.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified vulnerability in Oracle...
Huawei printer product privilege escalation | CVE-2022-48259
NAME__________Huawei printer product privilege escalationPlatforms Affected:Huawei BiSheng-WNM 3.0.0.325Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Huawei printer product could allow a remote attacker to gain...
Oracle Fusion Middleware privilege escalation | CVE-2023-21832
NAME__________Oracle Fusion Middleware privilege escalationPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________An unspecified vulnerability in Oracle Fusion Middleware related to the Admin Security...
