Cobalt Stike Beacon Detected – 218[.]28[.]63[.]34:8037
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 185[.]254[.]37[.]251:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]182[.]245:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
New TPM 2.0 flaws could let hackers steal cryptographic keys
The Trusted Platform Module (TPM) 2.0 specification is affected by two buffer overflow vulnerabilities that could allow attackers to access...
Ransomware gang leaks data stolen from City of Oakland
The Play ransomware gang has begun to leak data from the City of Oakland, California, that was stolen in a...
Malware Analysis – djvu – 4a3282a67a824741e1d348ee66503787
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4a3282a67a824741e1d348ee66503787SHA1: 5b1bfed820496cfbe8be51c9780e5328eea3e3b0ANALYSIS DATE: 2023-03-04T21:38:32ZTTPS: T1053, T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – cbbd980c667805837fb441b76514ec0e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: cbbd980c667805837fb441b76514ec0eSHA1: 3df9e7f60b8c12b94dedafe1403c67e775b39d83ANALYSIS DATE: 2023-03-04T21:40:48ZTTPS: T1053, T1005, T1081, T1012, T1082,...
Malware Analysis – asyncrat – ea78d1ea9761657c99bc813f66be5b1d
Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, family:nanocore, family:njrat, family:xworm, botnet::), botnet:default, botnet:متخطي بروسيس خاص, evasion, keylogger, persistence, pyinstaller, ransomware, rat, spyware,...
Malware Analysis – djvu – 4eb58b88d5eb2f3c3ee03ef07d4ec90e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4eb58b88d5eb2f3c3ee03ef07d4ec90eSHA1: a99e6c29bd428027701ead8e6f45856c4b1d782dANALYSIS DATE: 2023-03-04T21:32:44ZTTPS: T1005, T1081, T1012, T1082, T1222,...
Malware Analysis – djvu – 6c18dae7be8f90441b86851a7cc1d62a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 6c18dae7be8f90441b86851a7cc1d62aSHA1: 9932f62742d803bafc0b8ceec0af99c5401467ddANALYSIS DATE: 2023-03-04T23:26:45ZTTPS: T1005, T1081, T1222, T1053, T1012,...
Malware Analysis – redline – 481ca5811352fa9ef53a2f39a83bd1cf
Score: 10 MALWARE FAMILY: redlineTAGS:family:redline, discovery, infostealer, persistence, ransomware, spywareMD5: 481ca5811352fa9ef53a2f39a83bd1cfSHA1: af239d190a3c2bdc8531a8c34a7bcedc086ec88cANALYSIS DATE: 2023-03-04T23:11:17ZTTPS: T1082, T1060, T1012, T1005, T1081, T1112,...
Malware Analysis – djvu – 37a0cfb5bde13c19c06363e90c2d98ad
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 37a0cfb5bde13c19c06363e90c2d98adSHA1: 74a2edca446c6929ac68ebead896c1025acb4dbbANALYSIS DATE: 2023-03-04T21:46:49ZTTPS: T1082, T1053, T1012, T1005, T1081,...
Malware Analysis – asyncrat – 27f8ef3eb1c6fdbe295174f4fa4ea19c
Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, family:bitrat, family:neshta, family:njrat, family:redline, family:remcos, family:warzonerat, botnet:default, botnet:hacked, botnet:hackpack, botnet:nyan cat, botnet:remotehost, discovery, evasion, infostealer,...
Cobalt Stike Beacon Detected – 34[.]125[.]190[.]77:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 85[.]195[.]123[.]138:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]42[.]38[.]79:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]251[.]222:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 257c7df0813fc7897781336970a207ff
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 257c7df0813fc7897781336970a207ffSHA1: fdd625dc334bcd40d07da5c481424a85bf15a53bANALYSIS DATE: 2023-03-04T16:24:54ZTTPS: T1005, T1081, T1012, T1060, T1112,...
Malware Analysis – ransomware – 443a37cd2cc49d05fb25c4db8ee95632
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 443a37cd2cc49d05fb25c4db8ee95632SHA1: 27be9cfb271d790f37868317314bae772365fc6cANALYSIS DATE: 2023-03-04T15:18:54ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – djvu – a5f09e4df796c56f6dcc97e840cd8c02
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a5f09e4df796c56f6dcc97e840cd8c02SHA1: 19a0f4e6bacc31eb024dc63037033f7b5de11da5ANALYSIS DATE: 2023-03-04T17:27:07ZTTPS: T1053, T1005, T1081, T1012, T1082,...
Malware Analysis – smokeloader – b6a95bcb19a3b33ca3ae1c4996a64dc8
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: b6a95bcb19a3b33ca3ae1c4996a64dc8SHA1: 482bed9c3b6d52bcd0c820829c009df3ea723db4ANALYSIS DATE: 2023-03-04T17:39:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – b6fac73eafc2ddc0b6ae6c605f4a451f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: b6fac73eafc2ddc0b6ae6c605f4a451fSHA1: d4d2aa2ea7f7a0967a5d5f6213a389ad842dcce7ANALYSIS DATE: 2023-03-04T16:26:28ZTTPS: T1005, T1081, T1082, T1053, T1012,...
Malware Analysis – djvu – 3b1535328a6380de620657732a170e4b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 3b1535328a6380de620657732a170e4bSHA1: 62179f2f1800b4e862c956cf1e8dc9f2bbfad135ANALYSIS DATE: 2023-03-04T17:21:29ZTTPS: T1222, T1012, T1082, T1060, T1112,...
New FiXS ATM Malware Targeting Mexican Banks
A new ATM malware strain dubbed FiXS has been observed targeting Mexican banks since the start of February 2023. "The...
