Chinese Hackers Targeting South American Diplomatic Entities with ShadowPad
Microsoft on Monday attributed a China-based cyber espionage actor to a set of attacks targeting diplomatic entities in South America....
OSINT
Python Developers Beware: Clipper Malware Found in 450+ PyPI Packages!
Malicious actors have published more than 451 unique Python packages on the official Python Package Index (PyPI) repository in an...
Massive AdSense Fraud Campaign Uncovered – 10,000+ WordPress Sites Infected
The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70...
LockBit 3.0 Ransomware Victim: gruppobeltrame[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 120[.]46[.]192[.]64:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]111[.]16:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]117[.]162:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]159[.]43[.]58:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]58[.]197[.]94:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]240[.]207:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]153[.]117[.]9:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]77[.]18[.]249:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 176[.]113[.]115[.]44:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 65[.]49[.]237[.]57:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]30[.]17[.]40:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops
Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops Citrix has released security updates to address high-severity vulnerabilities...
CISA: Mozilla Releases Security Updates for Firefox 110 and Firefox ESR
Mozilla Releases Security Updates for Firefox 110 and Firefox ESR Mozilla has released security updates to address vulnerabilities in Firefox 110...
Malware Analysis – discovery – 55c131f621d3dcbfbdbd2531151a9600
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomware, spyware, stealer, trojanMD5: 55c131f621d3dcbfbdbd2531151a9600SHA1: 23e6509c7955ba31874cb6d206991950b41a0969ANALYSIS DATE: 2023-02-14T22:14:13ZTTPS: T1490, T1012, T1082, T1112, T1031, T1089,...
Malware Analysis – djvu – f1bc8d9c9770bb195851689a348b4168
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f1bc8d9c9770bb195851689a348b4168SHA1: a052c18d562e8ca161ecd02531faeecdfbcc8483ANALYSIS DATE: 2023-02-14T22:14:35ZTTPS: T1005, T1081, T1082, T1012,...
Malware Analysis – persistence – 8b42ebfba0cb67a1164a15c6dae6fbef
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 8b42ebfba0cb67a1164a15c6dae6fbefSHA1: 5d4b97bbf2ca874b5924ec489c90a2e109ae2ad6ANALYSIS DATE: 2023-02-14T21:05:27ZTTPS: T1491, T1112, T1060, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – smokeloader – 6d65abfbe9322286ee38a8c73820c6fa
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6d65abfbe9322286ee38a8c73820c6faSHA1: 5c512fd65dfe2cf81a146452e0b860d8eb9f0087ANALYSIS DATE: 2023-02-14T21:37:55ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – dcrat – 57d5eb8631d54ac6876a9bd9043e36e4
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, evasion, infostealer, persistence, ransomware, rat,...
Malware Analysis – djvu – 6e491867d96f8fd4344e2db60b6375d5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 6e491867d96f8fd4344e2db60b6375d5SHA1: 117dbfdb9c9e2f03f163fa2a2fa82df8e36ad341ANALYSIS DATE: 2023-02-14T22:40:21ZTTPS: T1222, T1012, T1082, T1005,...
Malware Analysis – persistence – 7cfd887a307fa2b733ef74861120f04f
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 7cfd887a307fa2b733ef74861120f04fSHA1: dc42de12a6a69a0ab3fb9cadb4ba27baec75a69fANALYSIS DATE: 2023-02-14T22:43:48ZTTPS: T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
