General Bytes Bitcoin ATMs hacked using zero-day, $1.5M stolen
Leading Bitcoin ATM maker General Bytes disclosed that hackers stole cryptocurrency from the company and its customers using a zero-day...
OSINT
Hackers mostly targeted Microsoft, Google, Apple zero-days in 2022
Hackers continue to target zero-day vulnerabilities in malicious campaigns, with researchers reporting that 55 zero-days were actively exploited in 2022,...
Google Pixel flaw allowed recovery of redacted, cropped images
An 'Acropalypse' flaw in Google Pixel's Markup tool made it possible to partially recover edited or redacted screenshots and images,...
Ferrari discloses data breach after receiving ransom demand
Ferrari has disclosed a data breach following a ransom demand received after attackers gained access to some of the company's...
Cl0p Ransomware Victim: SAKSFIFTHAVENUE[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
RansomHouse Ransomware Victim: Indonesia Power
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
NimPlant – A Light-Weight First-Stage C2 Implant Written In Nim
By Cas van Cooten (@chvancooten), with special thanks to some awesome folks: Fabian Mosch (@S3cur3Th1sSh1t) for sharing dynamic invocation implementation...
Malware Analysis – amadey – 3dfb87ae27b7c97fbdd4fee1134ccecf
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:rhadamanthys, family:smokeloader, family:vidar, botnet:pub1, botnet:sprg, backdoor, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – c0d467a9cc0f89da6d8d730230dd04e4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: c0d467a9cc0f89da6d8d730230dd04e4SHA1: 0e61f36578b4b1fac9043e69e3f3fd974808e93aANALYSIS DATE: 2023-03-20T16:00:57ZTTPS: T1222, T1082, T1053, T1005, T1081,...
Malware Analysis – djvu – f1f017093eb8a12910035db807549c26
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: f1f017093eb8a12910035db807549c26SHA1: e4c7edd1ea5c4b087b79ff0bca5170c4aaec6900ANALYSIS DATE: 2023-03-20T16:47:01ZTTPS: T1012, T1082, T1005, T1081, T1222,...
Malware Analysis – ransomware – 10d79ea476ce434684beb2d4cbe84195
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 10d79ea476ce434684beb2d4cbe84195SHA1: f08a5c8d45cda499cfb5bf7ff6640495f74df8aaANALYSIS DATE: 2023-03-20T16:40:10ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – amadey – 36da7db0e753060127bb4690ed9f132c
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:rhadamanthys, family:smokeloader, family:vidar, botnet:pub1, botnet:sprg, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 36da7db0e753060127bb4690ed9f132cSHA1: b91c6a735e972a2dcbe26d7a8fffab46bc40fed0ANALYSIS...
Malware Analysis – djvu – a6d11d46ecab3e7cd25e2f8e0c1cd1c8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a6d11d46ecab3e7cd25e2f8e0c1cd1c8SHA1: 2b2d2ef04b27e85b3c680d7282a40f564fc48c6bANALYSIS DATE: 2023-03-20T16:37:33ZTTPS: T1012, T1082, T1005, T1081, T1222,...
Malware Analysis – djvu – 1c4144c7b20a7771a52205e9a81ef106
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 1c4144c7b20a7771a52205e9a81ef106SHA1: eabc82495d5fd0d7ca8664b28199717f8503839dANALYSIS DATE: 2023-03-20T17:56:44ZTTPS: T1005, T1081, T1012, T1053, T1082,...
Malware Analysis – smokeloader – 1ba8969f1a68b563b7f3a8dca10dbf2b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 1ba8969f1a68b563b7f3a8dca10dbf2bSHA1: b6683d2e0c786dc907119a654e902a664ea13282ANALYSIS DATE: 2023-03-20T17:18:06ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – b92288fb617192c1eff11da83b7bbb70
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:pseudomanuscrypt, family:rhadamanthys, family:smokeloader, family:vidar, botnet:pub1, botnet:sprg, backdoor, discovery, loader, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – b9528172de91f451c061b587411f307e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: b9528172de91f451c061b587411f307eSHA1: 1b4cd6672ab4c40eabce8d713d797921c5150ceaANALYSIS DATE: 2023-03-20T17:06:54ZTTPS: T1012, T1082, T1060, T1112, T1222,...
New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads
A new piece of malware dubbed dotRunpeX is being used to distribute numerous known malware families such as Agent Tesla,...
Mispadu Banking Trojan Targets Latin America: 90,000+ Credentials Stolen
A banking trojan dubbed Mispadu has been linked to multiple spam campaigns targeting countries like Bolivia, Chile, Mexico, Peru, and...
Researchers Shed Light on CatB Ransomware’s Evasion Techniques
The threat actors behind the CatB ransomware operation have been observed using a technique called DLL search order hijacking to...
New Cyber Platform Lab 1 Decodes Dark Web Data to Uncover Hidden Supply Chain Breaches
This article has not been generated by ChatGPT. 2022 was the year when inflation hit world economies, except in one...
LockBit 3.0 Ransomware Victim: hitzler-ingenieure[.]de
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: stavinvest[.]cz
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: bbsautomation[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
