Cobalt Stike Beacon Detected – 43[.]143[.]130[.]125:8809
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 146[.]190[.]164[.]193:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – 87cee2eb9b9190baf07970bbf9b2975c
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, phishing, ransomwareMD5: 87cee2eb9b9190baf07970bbf9b2975cSHA1: 156dbed1d99359a498021e7684f518a926630814ANALYSIS DATE: 2023-02-18T09:57:53ZTTPS: T1012, T1082, T1112, T1060, T1042 ScoreMeaningExample10Known badA malware...
Malware Analysis – banker – ba1e76cfbd9461a75cea4976aec75450
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: ba1e76cfbd9461a75cea4976aec75450SHA1: d031a3a2a9880ff09589d5b8d5fc0cadee3fa73aANALYSIS DATE: 2023-02-18T10:55:08ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 6f676a2ba7c6aadee8edf99abcdd3600
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 6f676a2ba7c6aadee8edf99abcdd3600SHA1:...
Malware Analysis – discovery – 91ff0a576c00974ac41c59675fc4e2af
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 91ff0a576c00974ac41c59675fc4e2afSHA1: f786896607489c7c967cbb4f04688e42042bb261ANALYSIS DATE: 2023-02-18T11:02:38ZTTPS: T1060, T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 47c4a8f56f5770a8371c0464e133ece6
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 47c4a8f56f5770a8371c0464e133ece6SHA1: afc27e538f9cc3983020790880601fcc00b9c6e7ANALYSIS DATE: 2023-02-18T11:41:24ZTTPS: T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 14a6e77f2cf391b679fe64638d7d51cb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 14a6e77f2cf391b679fe64638d7d51cbSHA1: 0b8280d789e95fda1ff5fc93ac9d78d6c7c29679ANALYSIS DATE: 2023-02-18T11:38:28ZTTPS: T1222, T1053, T1005, T1081,...
Malware Analysis – djvu – b57dcc7a7a09f7bade0edc670e8f71b7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: b57dcc7a7a09f7bade0edc670e8f71b7SHA1: dac61b151a9fc6235ffcf1cbd66eb561fbf8e405ANALYSIS DATE: 2023-02-18T11:41:54ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – 3eb8fc05a7968465034bafd019786578
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 3eb8fc05a7968465034bafd019786578SHA1:...
Daily Vulnerability Trends: Sat Feb 18 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-23376Windows Common Log File System Driver Elevation of Privilege VulnerabilityCVE-2023-21715Microsoft Publisher Security...
LockBit 3.0 Ransomware Victim: piercetransit[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 02ad4e481ba81e320a07d120dc43c665
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 02ad4e481ba81e320a07d120dc43c665SHA1: 1252e3b297b67d7144858f37762a35ceb146b2d5ANALYSIS DATE: 2023-02-18T04:15:23ZTTPS: T1222, T1005, T1081, T1012,...
Malware Analysis – djvu – 1f7e2e306be2879fc49306bf97e79d96
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 1f7e2e306be2879fc49306bf97e79d96SHA1:...
Malware Analysis – djvu – 44cc35a02a83e46be644642d4a8cdec0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 44cc35a02a83e46be644642d4a8cdec0SHA1: d411efa11f7cb67fc0172fd474b7f1f5de22e826ANALYSIS...
Malware Analysis – banker – d35fa171e9336d8046728ee0ebb25dba
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: d35fa171e9336d8046728ee0ebb25dbaSHA1: e10cefe31ceba08ee6a52c14575f8f49ab895a31ANALYSIS DATE: 2023-02-18T05:29:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – a9b297b55af1abaeb36f9d339faa7b4e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: a9b297b55af1abaeb36f9d339faa7b4eSHA1:...
Malware Analysis – djvu – 5618340e22c1a5c7f93978b7e51ce8ac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 5618340e22c1a5c7f93978b7e51ce8acSHA1: f409b9248c18574717582467bd865d327826ca19ANALYSIS DATE: 2023-02-18T04:42:46ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – discovery – e4716d67c20e94e020e3d221cd47221b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: e4716d67c20e94e020e3d221cd47221bSHA1: 9d0658a262787220c22a4a8b56670aab764f00d2ANALYSIS DATE: 2023-02-18T05:22:38ZTTPS: T1012, T1082, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
LockBit 3.0 Ransomware Victim: hotdesk[.]me
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: innophaseinc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 109[.]172[.]45[.]111:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]151[.]92:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]177[.]146[.]20:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
