Cobalt Stike Beacon Detected – 23[.]227[.]203[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]100[.]48[.]185:8007
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 54[.]150[.]84[.]227:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
US-CERT Bulletin (SB23-016):Vulnerability Summary for the Week of January 9, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
CISA: CISA Updates Best Practices for Mapping to MITRE ATT&CK®
CISA Updates Best Practices for Mapping to MITRE ATT&CK® Today, CISA updated Best Practices for MITRE ATT&CK® Mapping. The MITRE...
HIVE Ransomware Victim: R C Stevens Construction
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
APTRS – Automated Penetration Testing Reporting System
APTRS (Automated Penetration Testing Reporting System) is an automated reporting tool in Python and Django. The tool allows Penetration testers...
Royal Ransomware Victim: carinya
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – ransomware – b4447fd459e4d3f8c74d0dd61b363f35
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b4447fd459e4d3f8c74d0dd61b363f35SHA1: 2f531904e872f4cb4a481c6983b4e7bb68541744ANALYSIS DATE: 2023-01-17T16:36:34ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – e8b5ced1c7421ee80a25afe48e816a08
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: e8b5ced1c7421ee80a25afe48e816a08SHA1: d4d88fe22b4c6fdc3222486d6de353c8fff8643aANALYSIS DATE: 2023-01-17T16:41:57ZTTPS: T1130, T1112, T1060, T1222, T1082...
Malware Analysis – djvu – a9bac1dee06b3257cab19cb09bef3d1c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: a9bac1dee06b3257cab19cb09bef3d1cSHA1: 2be37ca987a82592dde5e01293266a6a26e7892cANALYSIS DATE: 2023-01-17T16:47:09ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – discovery – fba93d8d029e85e0cde3759b7903cee2
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: fba93d8d029e85e0cde3759b7903cee2SHA1: 525b1aa549188f4565c75ab69e51f927204ca384ANALYSIS DATE: 2023-01-17T17:38:51ZTTPS: T1012, T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – caffd0c766788c61986d86fd2e608d81
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: caffd0c766788c61986d86fd2e608d81SHA1: 3fe95f91eb2cf49e160b3dd3908997dbde9a9277ANALYSIS DATE: 2023-01-17T17:34:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – ee055c9526a3f435cfa4e0bf9ee87266
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ee055c9526a3f435cfa4e0bf9ee87266SHA1: b5e24b18ba07c2e28377c9f249a99a46bb415b93ANALYSIS DATE: 2023-01-17T16:45:28ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 103[.]187[.]168[.]153:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]156[.]146:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]128[.]211[.]137:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 85[.]239[.]54[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]131[.]35:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]213[.]50[.]35:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]18[.]131[.]129:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 60[.]249[.]20[.]183:9000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Posh C2 Detected – 45[.]87[.]43[.]114:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Multiple ManageEngine products code execution | CVE-2022-47966
NAME__________Multiple ManageEngine products code executionPlatforms Affected:ManageEngine Access Manager Plus 4307 ManageEngine Active Directory 360 4309 ManageEngine ADAudit Plus 7080 ManageEngine...
