Node.js pdfmake module code execution | CVE-2022-46161
NAME Node.js pdfmake module code execution Platforms Affected:Risk Level:10Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Node.js pdfmake module could allow a remote...
Daily Vulnerability Trends: Sun Dec 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-44228Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1)...
Malware Analysis – upx – 7e3f8869d34b959d0b4381edae96e70a
Score: 8 MALWARE FAMILY: upxTAGS:upxMD5: 7e3f8869d34b959d0b4381edae96e70aSHA1: cd3c93170a853fb61324c4a7aba76f9fe61f472cANALYSIS DATE: 2022-12-06T15:12:41ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – dcrat – 3c10dc9df5b42968e8bbe67387bc30a2
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – ransomware – 8a3450d84f03d9ea8abb543d2ba41288
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8a3450d84f03d9ea8abb543d2ba41288SHA1: 819576e1d411354fb7102a6e64e0aaeaf29af450ANALYSIS DATE: 2022-12-11T04:30:05ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – becd0d98fcc5851e2096d2e17a9a1983
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: becd0d98fcc5851e2096d2e17a9a1983SHA1: 5065dd217c08d075a1db7cea02cc159467b8f29fANALYSIS DATE: 2022-12-11T04:48:33ZTTPS: T1060, T1112, T1082, T1012, T1053,...
Malware Analysis – evasion – b750a814e27003acd2de430638e637a5
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: b750a814e27003acd2de430638e637a5SHA1: b797699ec9e70a05112ece86f5583881a911b56cANALYSIS DATE: 2022-12-06T15:43:34ZTTPS: T1158, T1012, T1120, T1082, T1112, T1060 ScoreMeaningExample10Known badA malware...
Cobalt Stike Beacon Detected – 91[.]245[.]254[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]242[.]217[.]59:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]209[.]82[.]138:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 125[.]124[.]127[.]206:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]130[.]38[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]108[.]155:800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]190[.]139:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]209[.]82[.]138:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]98[.]50[.]48:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]251[.]86[.]24:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]211[.]4[.]155:8082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]14[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]237:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]71[.]8[.]186:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 7fd2e6479af433d6a531e420df24ea79
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7fd2e6479af433d6a531e420df24ea79SHA1: e2f3e894d475b6e3d8ced40ad7dccc7036fc4132ANALYSIS DATE: 2022-12-06T12:02:15ZTTPS: T1112, T1491 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 0064fed35865f9a9ecdca6c85ab52767
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 0064fed35865f9a9ecdca6c85ab52767SHA1: 7184c303cbcb09c8e2716571818bc5e19630a9d2ANALYSIS DATE: 2022-12-10T21:58:26ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – djvu – 692bfb53296c9843c95a447db91aa075
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 692bfb53296c9843c95a447db91aa075SHA1: 0837bd52360bbbd1f7ce0a1d8c7407637dc3b25bANALYSIS DATE: 2022-12-10T22:16:06ZTTPS: T1222, T1082, T1012, T1005,...
