Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 3581e600b562f13a0a23d301cf45e97fSHA1: 7bbc34ed95d9f65e08a6440748b1676ef6cf16d8ANALYSIS DATE: 2022-11-05T23:16:20ZTTPS: T1005, T1081, T1060, T1112, T1012, T1053,...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mast1000, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 5039097901c0a2d3a17f528c80e49a52SHA1: fed22f4080fe0cbbf6e7755e71748f53db4c1adcANALYSIS DATE:...
Score: 7 MALWARE FAMILY: TAGS:MD5: 250a23219a576180547734430d71b0e6SHA1: a5bcdb824d325d44c5e0feb5bf9389da520e6f82ANALYSIS DATE: 2022-11-05T22:45:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Cybersecurity researchers discovered 29 malicious PyPI packages delivering the W4SP stealer to developers’ systems. Cybersecurity researchers have discovered 29 packages...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Microsoft warns of an uptick among threat actors increasingly using publicly-disclosed zero-day exploits in their attacks. According to the Digital...
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Motivation During the forensic analysis of a Windows machine, you may find the name of a deleted prefetch file. While...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
NAME Rukovoditel cross-site scripting Platforms Affected:Risk Level:10Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Rukovoditel is vulnerable to cross-site scripting, caused by improper validation of...
NAME D-Link DIR-878 command execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION D-Link DIR-878 could allow a remote attacker to execute arbitrary...
NAME Rukovoditel SQL injection Platforms Affected:Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Rukovoditel is vulnerable to SQL injection. A remote attacker could send...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-32250net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
