Cobalt Stike Beacon Detected – 54[.]237[.]85[.]77:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Malware Analysis – xorist – 55b1eeeb199b4210063c1bb7a77abb25
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 55b1eeeb199b4210063c1bb7a77abb25SHA1: 35f1491934e585fdf2df1a8276d8aa303c4594bdANALYSIS DATE: 2023-02-21T11:48:30ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 1887e84a16365a8de7522804b86dac25
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 1887e84a16365a8de7522804b86dac25SHA1: f2f6edd89efa30cf81ce77e7b5b6787ef5401824ANALYSIS DATE: 2023-02-21T11:47:28ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – persistence – 8a17c0c50660056bce6a0292d302ebbe
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 8a17c0c50660056bce6a0292d302ebbeSHA1: 57a42db01fd1ad220012f3bcb824181b1b275ce6ANALYSIS DATE: 2023-02-21T11:53:18ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Malware Analysis – xorist – 80d330fd5fe1eb4229a0c0505cbad070
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 80d330fd5fe1eb4229a0c0505cbad070SHA1: 872a0059726d7354d0197ba209733e195b16623bANALYSIS DATE: 2023-02-21T11:53:20ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – persistence – ad69026f0cf984eaef62389e9b8ab266
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: ad69026f0cf984eaef62389e9b8ab266SHA1: 29d3d01ce6827de4298c7bea23acd2b74053991dANALYSIS DATE: 2023-02-21T11:53:28ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – persistence – 13973e33f8be47f2d8fdc3f492ae2a3d
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 13973e33f8be47f2d8fdc3f492ae2a3dSHA1: 08415d3285d4a535d2b604c2831d5f181ec402c5ANALYSIS DATE: 2023-02-21T11:53:27ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – xorist – cb255677750b445152be5798a1382e38
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: cb255677750b445152be5798a1382e38SHA1: 498f445a465d22ab2c3cee7cdd36487068135569ANALYSIS DATE: 2023-02-21T11:53:25ZTTPS: T1060, T1112, T1012, T1005, T1081 ScoreMeaningExample10Known...
Malware Analysis – xorist – 0da42b36896f93a1a517f69c7fc19773
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 0da42b36896f93a1a517f69c7fc19773SHA1: 2730de840fec2cb457db0329bb5d53794c48db6eANALYSIS DATE: 2023-02-21T11:53:23ZTTPS: T1005, T1081, T1060, T1112, T1091 ScoreMeaningExample10Known...
Malware Analysis – persistence – 08daf2314b45178ae2f161597f271958
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 08daf2314b45178ae2f161597f271958SHA1: 5b762a27cda5e435b7e2c7de7734eef8a744c226ANALYSIS DATE: 2023-02-21T11:53:37ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – xorist – 4a5757268b4092888d356752f9c08c69
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 4a5757268b4092888d356752f9c08c69SHA1: fe609e6a0b803a777cacd32313ab06ce36491293ANALYSIS DATE: 2023-02-21T11:53:35ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 17918fb06d51823743387d4d7a1c7e33
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 17918fb06d51823743387d4d7a1c7e33SHA1: b5e38e285f983ed6b6065525f67b60c9e671517bANALYSIS DATE: 2023-02-21T11:53:31ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – neshta – 7c68b6a3494c0f2d1197d8bb5d787494
Score: 10 MALWARE FAMILY: neshtaTAGS:family:neshta, family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 7c68b6a3494c0f2d1197d8bb5d787494SHA1: 15292934b45b68f367e3a868fb71a7fa2d8a77b9ANALYSIS DATE: 2023-02-21T11:53:29ZTTPS: T1112, T1042, T1005, T1081, T1082,...
Researchers Warn of ReverseRAT Backdoor Targeting Indian Government Agencies
A spear-phishing campaign targeting Indian government entities aims to deploy an updated version of a backdoor called ReverseRAT. Cybersecurity firm...
Daily Vulnerability Trends: Tue Feb 21 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-47966Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow...
Malware Analysis – djvu – ce97b8938c3342b78ee9f45c9cfa528f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ce97b8938c3342b78ee9f45c9cfa528fSHA1: 1cecd17eb48803c393e44b39b4f887ee57f19541ANALYSIS DATE: 2023-02-21T03:16:18ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – e19cb0a09fa6ad4162d2faed1772a2ea
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e19cb0a09fa6ad4162d2faed1772a2eaSHA1: 0c5302720091348b33d5f21d76cc4df9bc7df503ANALYSIS DATE: 2023-02-21T03:04:11ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – 57bea51fa7d68734cd7d73f4adf78995
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:pseudomanuscrypt, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, loader, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...
Malware Analysis – djvu – 0725ad29651b7b0a49f213dc38f73185
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 0725ad29651b7b0a49f213dc38f73185SHA1: 05597deb81686634992d0e2546a70dd1d24fc5daANALYSIS DATE:...
Malware Analysis – djvu – ea2f8aa6c71ea98450efdf5d62d4660a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ea2f8aa6c71ea98450efdf5d62d4660aSHA1: cc2f3e843d8be20b2e40a59f65f0a141b7c626a9ANALYSIS DATE: 2023-02-21T05:48:05ZTTPS: T1012, T1082, T1053, T1060,...
Malware Analysis – djvu – 45f9335fcefc8ff05db68a33b618b079
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 45f9335fcefc8ff05db68a33b618b079SHA1: 1928b38120ab18f78619fc4b2b477e406bfb10cfANALYSIS DATE:...
Malware Analysis – djvu – 0baa2b5fe7fdcf60eac072abc8a3f846
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 0baa2b5fe7fdcf60eac072abc8a3f846SHA1: e6db234e2d4c281864b1917603431d37fc1d9ccaANALYSIS DATE: 2023-02-21T05:38:39ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – e703fdec53502a33899a69a88033a1e9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e703fdec53502a33899a69a88033a1e9SHA1: 8df68f60069eadcd4a039d8a87f9c88ba7aba327ANALYSIS DATE: 2023-02-21T04:52:37ZTTPS: T1060, T1112, T1053, T1005,...
Cobalt Stike Beacon Detected – 1[.]116[.]2[.]18:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
