CommonSpirit hospital chains hit by ransomware, patients are facing problems
CommonSpirit, one of the largest hospital chains in the US, suffered a ransomware cyberattack that impacted its operations. Common Spirit,...
EvilnoVNC – Ready To Go Phishing Platform
EvilnoVNC is a Ready to go Phishing Platform. Unlike other phishing techniques, EvilnoVNC allows 2FA bypassing by using a real...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]13:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]59[.]205:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 138[.]68[.]69[.]19:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]42[.]221[.]54:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 110[.]43[.]34[.]176:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – a31728f1578939de11bcf95509015f35
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: a31728f1578939de11bcf95509015f35SHA1: 0fce37afab13319f182849da37d97f5e75774794ANALYSIS DATE: 2022-10-09T08:41:02ZTTPS: T1114, T1005,...
Malware Analysis – djvu – fc297ecbdd6f2ebf586541caaa5166ea
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: fc297ecbdd6f2ebf586541caaa5166eaSHA1: 9ad9318fe86e6102d32f0efd10ab4bb54f9e02a3ANALYSIS DATE: 2022-10-09T08:14:31ZTTPS: T1012, T1120,...
Malware Analysis – djvu – 42ffdba9b92798093c337aae0be68cd1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 42ffdba9b92798093c337aae0be68cd1SHA1: a9bce0279a067d5485f391630a49963296d59f97ANALYSIS DATE: 2022-10-09T08:32:34ZTTPS: T1012, T1082, T1053, T1005,...
Cobalt Stike Beacon Detected – 81[.]68[.]193[.]9:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]90:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 46[.]175[.]148[.]53:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]59[.]127:7500
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – 93e704fbe731304bbb9a397288e79af0
Score: 1 MALWARE FAMILY: TAGS:MD5: 93e704fbe731304bbb9a397288e79af0SHA1: 5fb23c7b3285936aa47081b7df86072e267d14b8ANALYSIS DATE: 2022-10-09T09:35:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 93e704fbe731304bbb9a397288e79af0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 93e704fbe731304bbb9a397288e79af0SHA1: 5fb23c7b3285936aa47081b7df86072e267d14b8ANALYSIS DATE: 2022-10-09T09:36:03ZTTPS: T1490, T1059, T1107, T1053 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – wannacry –
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, persistence, ransomware, spyware, stealer, wormMD5: SHA1: ANALYSIS DATE: 2022-10-09T08:47:34ZTTPS: T1082, T1222, T1112, T1107, T1490,...
Malware Analysis – djvu – c81e1bb65525bca99bc33441f82e866b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c81e1bb65525bca99bc33441f82e866bSHA1: 02cefdffd53626f340cb3664504fbf1b99a87ef1ANALYSIS DATE: 2022-10-09T09:40:10ZTTPS: T1005, T1081,...
Malware Analysis – evasion – fdb21d963566dca375964739e920661f
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: fdb21d963566dca375964739e920661fSHA1: 80320a8ae8d137fe9e8974ab10b2f46a5db7f9dcANALYSIS DATE: 2022-10-09T09:40:34ZTTPS: T1112, T1158, T1088, T1089, T1082, T1005,...
Malware Analysis – collection – 93cbe4ed3d46abe732a124a41e7147a2
Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: 93cbe4ed3d46abe732a124a41e7147a2SHA1: 94a24be60d90479ce27f7787a86678472aabdc6eANALYSIS DATE: 2022-10-09T09:47:57ZTTPS: T1107, T1490, T1060, T1112, T1114, T1082 ScoreMeaningExample10Known...
Malware Analysis – djvu – d5966afb8379cf36f8aff301e2553dcc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: d5966afb8379cf36f8aff301e2553dccSHA1: bcf638c81de10881cc133003a5d9f89df1225f4dANALYSIS DATE: 2022-10-09T10:11:54ZTTPS: T1114, T1005,...
Malware Analysis – ransomware – e74db5809e677550f1a6a2e66bf23249
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e74db5809e677550f1a6a2e66bf23249SHA1: 312aaa9d937ccf126ba87bddb7456335ab6b6424ANALYSIS DATE: 2022-10-09T09:49:45ZTTPS: T1012, T1082, T1005, T1081 ScoreMeaningExample10Known badA malware family was...
Lloyd’s of London investigates alleged cyber attack
Lloyd’s of London launched on Wednesday an investigating into a possible cyber attack after having detected unusual activity on its...
Daily Vulnerability Trends: Sun Oct 09 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2014-0160The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g...
