Cobalt Stike Beacon Detected – 43[.]138[.]37[.]185:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 6fb99593905840cf95ab2364c4c87d63
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6fb99593905840cf95ab2364c4c87d63SHA1: 8d0aafee1cabe7b6cc0caf93ffafd3da3bff8b9bANALYSIS DATE: 2022-11-23T20:48:15ZTTPS: T1082, T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 33cf9aac2e4768e8c9e10aeb8f6a9ad6
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 33cf9aac2e4768e8c9e10aeb8f6a9ad6SHA1: 8c0ba6cafeb8b38a964bc178b96233af7e89f5e7ANALYSIS DATE: 2022-11-23T19:22:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – 444072ec68d9dad8de5f9060c74e3b90
Score: 7 MALWARE FAMILY: TAGS:MD5: 444072ec68d9dad8de5f9060c74e3b90SHA1: f3845470366d4ce52a18492f279e3a89ef25e485ANALYSIS DATE: 2022-11-23T19:53:54ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – b3429e9f4084ec931dad480f0940f97f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: b3429e9f4084ec931dad480f0940f97fSHA1: 0c1ba0f19fa049d3bef2d52ccbd816bb04916a84ANALYSIS DATE: 2022-11-23T22:31:54ZTTPS: T1012, T1222, T1082, T1005,...
Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
Ducktail information stealer continues to evolve
The operators behind the Ducktail information stealer continue to improve their malicious code, operators experts warn. In late July 2022,...
Malware Analysis – evasion – a7199d2ff40258ac7427ce9b513fe3fe
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: a7199d2ff40258ac7427ce9b513fe3feSHA1: a9eecc7ad31d4d57cb6ff57b1588f18e4830bcc2ANALYSIS DATE: 2022-11-23T14:18:03ZTTPS: T1490, T1012, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – evasion – 9e4cab69981fa679c9a84375676fcc1d
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9e4cab69981fa679c9a84375676fcc1dSHA1: f58cc7f89276024b549330f7b957ff04d0ac1c42ANALYSIS DATE: 2022-11-23T14:44:56ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – persistence – 34926506fefc6f5ebace4672d93af6ba
Score: 7 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 34926506fefc6f5ebace4672d93af6baSHA1: 4afaa8fe82b71906acf06cb2d7e52de160df2e85ANALYSIS DATE: 2022-11-23T14:26:51ZTTPS: T1060, T1112, T1491, T1012, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – persistence – 8c6309eabacbf95f01cea9e1e84aad4c
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8c6309eabacbf95f01cea9e1e84aad4cSHA1: fe1e785fb4519f1e4ed15351b68b399185c17aadANALYSIS DATE: 2022-11-23T14:22:45ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 95cef99dd8ed824a90e544deb4f0d56d
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 95cef99dd8ed824a90e544deb4f0d56dSHA1: ce4ca4243380ce94c0614d250cc8f950213636edANALYSIS DATE: 2022-11-23T14:42:21ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – b0eea251428a489d202d8dc6c647077c
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b0eea251428a489d202d8dc6c647077cSHA1: 4262d165c5aa411b7f9e65d71a7cbe7c68db5747ANALYSIS DATE: 2022-11-23T14:59:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 9792eb6458541aa819ffdfff1b9cb12c
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 9792eb6458541aa819ffdfff1b9cb12cSHA1: 6b1d6ddd6e10d589956eaee390fbbac8efc525f9ANALYSIS DATE: 2022-11-23T15:04:03ZTTPS: T1082, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – persistence – 5cb43bf4b7e5329caa8d51f59f8774d5
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 5cb43bf4b7e5329caa8d51f59f8774d5SHA1: 5cf6138ddfba03f6922e15894f47a23e69bebc2cANALYSIS DATE: 2022-11-23T14:45:09ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – c9d596073569322f439fd398801c53c1
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: c9d596073569322f439fd398801c53c1SHA1: 67738a5c80585149f57416273c100ca525c6cb69ANALYSIS DATE: 2022-11-23T14:58:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – infostealer – 0b29fe731c48b9b8f517603c3b0a6732
Score: 8 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 0b29fe731c48b9b8f517603c3b0a6732SHA1: 83091af23093b8ae2221a7586a2a2d2d6134a96eANALYSIS DATE: 2022-11-23T15:20:07ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – ece2ffc39e026085650c78f561e771b9
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ece2ffc39e026085650c78f561e771b9SHA1: a06a9706d853e4d6b9c260f66a93901ae04fd477ANALYSIS DATE: 2022-11-23T15:17:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – banker – 58f160a021279cb9d149aa74a2c422e0
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 58f160a021279cb9d149aa74a2c422e0SHA1: bcc970c3af6aa0286ec17abc3654eb1dfd5f05a8ANALYSIS DATE: 2022-11-23T15:19:28ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 98a94d7ea1685b134073859aefaa09e5
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 98a94d7ea1685b134073859aefaa09e5SHA1: 973b9bc5420ff2c2d66f87f3dfaff9c84d6722c7ANALYSIS DATE: 2022-11-23T15:17:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – banker – 6e1a642728ec61cca2c480c28421f9a6
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 6e1a642728ec61cca2c480c28421f9a6SHA1: 86a7e7bdb651b523b419eb9e2045f18f35a5c90fANALYSIS DATE: 2022-11-23T15:20:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – af3c7aebed0475b486ab8a42ced57552
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: af3c7aebed0475b486ab8a42ced57552SHA1: 93ba7fd08f0232e82b902523cd8c546abfeacaa2ANALYSIS DATE: 2022-11-23T15:20:48ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
