Cobalt Stike Beacon Detected – 64[.]112[.]42[.]200:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 43902bf87add073c555196712a70e5a0
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 43902bf87add073c555196712a70e5a0SHA1: d484c47298581385e57c06b74267d85870817aaeANALYSIS DATE: 2022-10-09T20:22:24ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Cobalt Stike Beacon Detected – 43[.]138[.]102[.]216:111
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – ba86411533a04b3a1069fcf9747f9d24
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: ba86411533a04b3a1069fcf9747f9d24SHA1: a6b27d7b35e3e46e9a95e0ae58e80add666c9a5eANALYSIS DATE: 2022-10-09T20:22:27ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 798ff3a6ce38541fb51f0d439b86eda1
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 798ff3a6ce38541fb51f0d439b86eda1SHA1: 7e6f5fc0c22bde9668a6d9c89ffbd732cb4a439aANALYSIS DATE: 2022-10-09T20:23:03ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 7da84eb952b1d8352fde4c0f1d9d5be2
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 7da84eb952b1d8352fde4c0f1d9d5be2SHA1: e1b241cefebdea2f08351092808d810d2add387cANALYSIS DATE: 2022-10-09T20:23:03ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Cobalt Stike Beacon Detected – 185[.]8[.]105[.]66:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]7[.]230[.]192:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 157[.]245[.]153[.]234:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]251[.]84[.]108:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 43902bf87add073c555196712a70e5a0
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 43902bf87add073c555196712a70e5a0SHA1: d484c47298581385e57c06b74267d85870817aaeANALYSIS DATE: 2022-10-09T20:23:04ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 2067b087c553ec770b61b36c6dfc8aa5
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 2067b087c553ec770b61b36c6dfc8aa5SHA1: 038879f23ff375a11fbabc654b7e12e891496449ANALYSIS DATE: 2022-10-09T20:23:03ZTTPS: T1107, T1490, T1082, T1031 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – ba86411533a04b3a1069fcf9747f9d24
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: ba86411533a04b3a1069fcf9747f9d24SHA1: a6b27d7b35e3e46e9a95e0ae58e80add666c9a5eANALYSIS DATE: 2022-10-09T20:23:04ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – ebea92f74f95d15a2a673e3f7aeb0318
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: ebea92f74f95d15a2a673e3f7aeb0318SHA1: f2c9bd9d27583e3a71d16925326eea614f172e2dANALYSIS DATE: 2022-10-09T20:23:03ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – ab1eecb4dc61552200148fad5de653ed
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ab1eecb4dc61552200148fad5de653edSHA1: 167e25b660ac079146968cc546bff8e51cb2a580ANALYSIS DATE: 2022-10-09T22:51:28ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 81fec1a7d173021ed64be67ec2a74819
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:newpatch13, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 81fec1a7d173021ed64be67ec2a74819SHA1: 33fb04cfccdaa3cf41a38ba223a88290367d8b91ANALYSIS DATE:...
Malware Analysis – djvu – 726611b4d93637d50b70e10628d63b92
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 726611b4d93637d50b70e10628d63b92SHA1: 40d73e0c0154ee4992b530c64979cb2b5b740cbaANALYSIS DATE: 2022-10-09T21:28:41ZTTPS: T1064, T1114,...
Malware Analysis – djvu – 91072a7519fc9af6e2460772cd9db1b2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 91072a7519fc9af6e2460772cd9db1b2SHA1: c088d260adbd138fefb5bed1ed2fa4365a83b33eANALYSIS DATE: 2022-10-09T20:59:33ZTTPS: T1064, T1222,...
Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM
Everest ransomware operators claimed to have hacked South Africa state-owned company ESKOM Hld SOC Ltd. In March 2022, the Everest...
LockBit 3.0 Ransomware Victim: alliedusa[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: buydps[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cedemo[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: dragages-ports[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 0184dbbad3f6b34d794bd88d865990d0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0184dbbad3f6b34d794bd88d865990d0SHA1: 377916b926221b3930ada62a6660b7fd8a07564eANALYSIS DATE: 2022-10-09T14:07:00ZTTPS: T1012, T1120,...
