Brute Ratel C4 Detected – 45[.]137[.]117[.]219:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Malware Analysis – amadey – c05a5e1f0fe1ada0824c6ed62d7c1014
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c05a5e1f0fe1ada0824c6ed62d7c1014SHA1: 6cd88375eb41aa2bf5628fe64585df698c24a5bbANALYSIS DATE:...
Malware Analysis – amadey – df551c1f4b32c3c1bba785c23297b62c
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: df551c1f4b32c3c1bba785c23297b62cSHA1: f522481eb37575d29c62a5dae2c7c9c9412356c6ANALYSIS DATE:...
Malware Analysis – djvu – 4eba652fcb08f677765760fd3b9af02f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 4eba652fcb08f677765760fd3b9af02fSHA1: e49b8d2a70975897d664e38ab55c970b07f734b3ANALYSIS DATE: 2022-12-02T10:25:57ZTTPS: T1060, T1112, T1222, T1082, T1012, T1130 ScoreMeaningExample10Known badA...
Malware Analysis – ransomware – 09c09f6890098c4686b55b1af5a4494c
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 09c09f6890098c4686b55b1af5a4494cSHA1: e252aafe3a5de030f1ae49f86bd1e1b4743b7ddeANALYSIS DATE: 2022-12-02T11:29:22ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Movie Ticket Booking System cross-site scripting | CVE-2022-4250
NAME Movie Ticket Booking System cross-site scripting Platforms Affected:Movie Ticket Booking System Movie Ticket Booking System-PHP SQL injection vulnerability existsRisk...
Book Store Management System information disclosure | CVE-2022-4229
NAME Book Store Management System information disclosure Platforms Affected:Sourcecodester Book Store Management System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Book Store Management...
Ff4j code execution | CVE-2022-44262
NAME Ff4j code execution Platforms Affected:ff4j ff4j 1.8.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ff4j could allow a remote attacker to execute arbitrary...
Drachtio Server buffer overflow | CVE-2022-45909
NAME Drachtio Server buffer overflow Platforms Affected:drachtio drachtio-server 0.8.18Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Drachtio Server is vulnerable to a heap-based buffer...
Kaspersky Security Bulletin 2022. Statistics
All statistics in this report are from the global cloud service Kaspersky Security Network (KSN), which receives information from components...
Malware Analysis – persistence – a735ff10e359539181c1eca593091ee6
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a735ff10e359539181c1eca593091ee6SHA1: 8a977618d315bfacb16afbe883e04f427311cefbANALYSIS DATE: 2022-12-02T03:36:25ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – dcrat – fd16369ea0ae1958caa9cd09fc114704
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: fd16369ea0ae1958caa9cd09fc114704SHA1:...
Malware Analysis – evasion – 197a5d55e3602be8fbafdad373021886
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 197a5d55e3602be8fbafdad373021886SHA1: ff8321ebff95c3706847696c1515974db64ddec9ANALYSIS DATE: 2022-11-30T09:51:43ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – globeimposter – d0c67160c740f62c25b0558e9563a824
Score: 10 MALWARE FAMILY: globeimposterTAGS:family:globeimposter, persistence, ransomware, spyware, stealerMD5: d0c67160c740f62c25b0558e9563a824SHA1: 5b6515fb1d1e8581d4f70b03e25053051621656fANALYSIS DATE: 2022-12-02T03:36:30ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware...
Malware Analysis – blackcat – 3e52a1ec6462ec78ca39a22af21a7f28
Score: 10 MALWARE FAMILY: blackcatTAGS:family:blackcat, ransomwareMD5: 3e52a1ec6462ec78ca39a22af21a7f28SHA1: bac0a8d5199c70b27888eb12e501697a4d268b8fANALYSIS DATE: 2022-12-02T04:25:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – d45513c2e1be1a29339c921168c8cd19
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d45513c2e1be1a29339c921168c8cd19SHA1: 4b8bb78467ad97740cc6cbb7dd4a3022cdfda951ANALYSIS DATE: 2022-12-02T04:32:39ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – ransomware – daade2e0cfa7edb952c8de1b2fadb701
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: daade2e0cfa7edb952c8de1b2fadb701SHA1: c9701e17f9ea02548060306cd3c48cbfa0e43121ANALYSIS DATE: 2022-12-02T04:06:00ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – dcrat – 811a9e43c241b7b65275326de223785c
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 811a9e43c241b7b65275326de223785cSHA1:...
Royal Ransomware Victim: Lamtec
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Cobalt Stike Beacon Detected – 130[.]185[.]119[.]43:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]132[.]204[.]191:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]48[.]81[.]230:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]31[.]199:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]192[.]19[.]75:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
