Cobalt Stike Beacon Detected – 45[.]128[.]211[.]137:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 179[.]43[.]156[.]146:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 60[.]249[.]20[.]183:9000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]18[.]131[.]129:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]213[.]50[.]35:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]131[.]35:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Posh C2 Detected – 45[.]87[.]43[.]114:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Royal Ransomware Victim: Autodelta
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Cobalt Stike Beacon Detected – 47[.]99[.]62[.]199:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]253[.]66[.]206:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]105[.]70:6789
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]106[.]193[.]75:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]98[.]50[.]31:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 38[.]47[.]100[.]176:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]114[.]28[.]125:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – bootkit – d2f9b86aded4ecd4b309d460d5ded850
Score: 10 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, persistence, ransomware, trojanMD5: d2f9b86aded4ecd4b309d460d5ded850SHA1: 5d1d8f05d6bdc025f4edac3db52873779b8975a2ANALYSIS DATE: 2023-01-16T22:31:14ZTTPS: T1012, T1497, T1082, T1060, T1112, T1031,...
Malware Analysis – djvu – f0ed4abc044e5d3d555b9a7a567c3f68
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: f0ed4abc044e5d3d555b9a7a567c3f68SHA1: 6cfc80ce713f433b764189611195df7ed2fa3d77ANALYSIS DATE: 2023-01-16T22:05:53ZTTPS: T1222, T1082, T1130, T1112, T1060...
Malware Analysis – djvu – 55602580c3b839262b5c51c02c784e33
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 55602580c3b839262b5c51c02c784e33SHA1: 1ca65ac61268be63416abe9034681f368fbf59eeANALYSIS DATE: 2023-01-16T23:11:51ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – djvu – d53ebb314c2c89b7057c4449b8356314
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d53ebb314c2c89b7057c4449b8356314SHA1: c7daac2a127bc9672ca5fca6bd0177838e7b561eANALYSIS DATE: 2023-01-16T22:28:06ZTTPS: T1130, T1112, T1012, T1005,...
Avast releases free BianLian ransomware decryptor
Security software company Avast has released a free decryptor for the BianLian ransomware strain to help victims of the malware...
Datadog rotates RPM signing key exposed in CircleCI hack
Cloud security firm Datadog says that one of its RPM GPG signing keys and its passphrase have been exposed during...
Hackers exploit Cacti critical bug to install malware, open reverse shells
More than 1,600 instances of the Cacti device monitoring tool reachable over the internet are vulnerable to a critical security...
Malicious ‘Lolip0p’ PyPi packages install info-stealing malware
A threat actor has uploaded to the PyPI (Python Package Index) repository three malicious packages that carry code to drop info-stealing...
Vice Society ransomware leaks University of Duisburg-Essen’s data
The Vice Society ransomware gang has claimed responsibility for a November 2022 cyberattack on the University of Duisburg-Essen (UDE) that...
