Cobalt Stike Beacon Detected – 43[.]132[.]124[.]75:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]69:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 7b2e99759b23da1ac4e2672684b75c57
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7b2e99759b23da1ac4e2672684b75c57SHA1: 2e80003d77c6a07c6dfc3e8c85586d226e2cb541ANALYSIS DATE: 2022-10-22T09:56:55ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – locky – f40dfb641736b161558f45a28eb7d12c
Score: 10 MALWARE FAMILY: lockyTAGS:family:locky, ransomwareMD5: f40dfb641736b161558f45a28eb7d12cSHA1: 5f7041f9e5abfc97c80bb1175c433fec01c2eb3bANALYSIS DATE: 2022-10-22T09:36:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – a092ec0ba9f83f59c0ded72d24758077
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a092ec0ba9f83f59c0ded72d24758077SHA1: e782e144bef62bb3d6455736e5d4309725a151adANALYSIS DATE: 2022-10-22T09:30:27ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – – 74d5c545888561be891363d16ceae294
Score: 1 MALWARE FAMILY: TAGS:MD5: 74d5c545888561be891363d16ceae294SHA1: 127f4c1da282b56c1d5e3f05944315147f024992ANALYSIS DATE: 2022-10-22T09:47:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – bbae117f83c3c0b06a46e464e227883f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bbae117f83c3c0b06a46e464e227883fSHA1: e95800719dec01064ba60988a2f48a9870efb51eANALYSIS DATE: 2022-10-22T10:00:41ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – – b8e46d51ee306d411cf604da7907cf87
Score: 1 MALWARE FAMILY: TAGS:MD5: b8e46d51ee306d411cf604da7907cf87SHA1: 8f823a95b660343194d8651e02445d32f172edc8ANALYSIS DATE: 2022-10-22T10:27:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 2495dfd06c1c1e8f64aaf9ba9805627c
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 2495dfd06c1c1e8f64aaf9ba9805627cSHA1: 095bbec046b9760795370b02c482c6ae9f72a68bANALYSIS DATE: 2022-10-22T10:22:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 08fa2b24641973b9947bcafdc37771e7
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 08fa2b24641973b9947bcafdc37771e7SHA1: 565df963618bff66540c2071dfffaf58efaae52dANALYSIS DATE: 2022-10-22T10:18:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 153785fdb6461c9c71e75ed2e9108a28
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:nam7, botnet:slovarikinstalls, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – ransomware – 95e2e70ed1b76f1ebbfd751a01938982
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 95e2e70ed1b76f1ebbfd751a01938982SHA1: 166f733180f4a681453d33a3506100656fd166f1ANALYSIS DATE: 2022-10-22T10:33:46ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – a2801a0ac7d6204ec19ec708228e5a0b
Score: 1 MALWARE FAMILY: TAGS:MD5: a2801a0ac7d6204ec19ec708228e5a0bSHA1: 692a926583bcf3aed9fa28678435b6d7921e49abANALYSIS DATE: 2022-10-22T10:41:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – 96bf108af2eafc33969cfb9f8ace6a25
Score: 1 MALWARE FAMILY: TAGS:MD5: 96bf108af2eafc33969cfb9f8ace6a25SHA1: f170c820fac79c4851061980b1eaa3318c3d2377ANALYSIS DATE: 2022-10-22T10:29:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Oracle VM VirtualBox unspecified | CVE-2022-39426
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
F5 BIG-IP (Advanced WAF, ASM) code execution | CVE-2022-41617
NAME F5 BIG-IP (Advanced WAF, ASM) code execution Platforms Affected:F5 BIG-IP (ASM) 14.1.0 F5 BIG-IP (ASM) 13.1.0 F5 BIG-IP (ASM)...
Oracle VM VirtualBox unspecified | CVE-2022-39424
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Oracle VM VirtualBox unspecified | CVE-2022-39427
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Oracle VM VirtualBox unspecified | CVE-2022-39425
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Daily Vulnerability Trends: Sat Oct 22 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-35829Service Fabric Explorer Spoofing Vulnerability.CVE-2022-2602 No description provided CVE-2022-22954VMware Workspace ONE Access...
Malware Analysis – evasion – a04709c78c2944c5f7a3706667668d10
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a04709c78c2944c5f7a3706667668d10SHA1: 8851aa4fc32127e39b2da36863ed6e76c5b689f9ANALYSIS DATE: 2022-10-20T12:00:01ZTTPS: T1112, T1088, T1089, T1012, T1082, T1060,...
Malware Analysis – evasion – a08f53dae79185839ef19982cf9d2fb0
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a08f53dae79185839ef19982cf9d2fb0SHA1: e6a75b197488338572f3d81a74ef0fe841136be2ANALYSIS DATE: 2022-10-20T11:59:58ZTTPS: T1004, T1112, T1082, T1088, T1089, T1005,...
Malware Analysis – evasion – 9607b0e9cac7f3441d386d7f00ba1940
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 9607b0e9cac7f3441d386d7f00ba1940SHA1: 5beddf927d4130d16aa18e4ce2e89e891eefccf2ANALYSIS DATE: 2022-10-20T12:00:12ZTTPS: T1005, T1081, T1060, T1112, T1088, T1089,...
Malware Analysis – evasion – 4286d8a742e37ae64d6ff516eedd5310
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 4286d8a742e37ae64d6ff516eedd5310SHA1: f3690ebf32c82256570fd0c6a02185ad805c9a28ANALYSIS DATE: 2022-10-20T12:00:17ZTTPS: T1112, T1088, T1089, T1060, T1082, T1158,...
