Daily Vulnerability Trends: Wed Jan 11 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41080Microsoft Exchange Server Elevation of Privilege Vulnerability. This CVE ID is unique...
OSINT
Malware Analysis – ransomware – 3d1566b912f435ee324262e6b92e0d75
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 3d1566b912f435ee324262e6b92e0d75SHA1: 57467058f84b84998025420aef3ddd4c5dca1aedANALYSIS DATE: 2023-01-11T03:30:05ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 17f5401b62b3efd7365ed67ee67bb59f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 17f5401b62b3efd7365ed67ee67bb59fSHA1: da6b9313ab2f12353908f78990b80bf244507db0ANALYSIS DATE: 2023-01-11T03:48:46ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – – 1e88c975002679baa36e7849701b102a
Score: 3 MALWARE FAMILY: TAGS:MD5: 1e88c975002679baa36e7849701b102aSHA1: 31dda2ec43357ee058df677c6f5908dd836b10c2ANALYSIS DATE: 2023-01-11T03:22:00ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – aurora – bd32b492f046674ced01789233a3c80f
Score: 10 MALWARE FAMILY: auroraTAGS:family:aurora, family:dcrat, family:djvu, family:icedid, family:smokeloader, family:vidar, botnet:19, campaign:3131022508, backdoor, banker, collection, discovery, infostealer, loader, persistence, ransomware,...
Malware Analysis – ransomware – b40a2374b51d487190fe535bb651aa3a
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b40a2374b51d487190fe535bb651aa3aSHA1: 23213f8f9ee58c3166101af2869783c90dfdff14ANALYSIS DATE: 2023-01-11T04:45:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 27e00116aa0de485427a45c2e905c771
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 27e00116aa0de485427a45c2e905c771SHA1: 7c9c0d69f5e28f63e856cffd9a6fe39219698932ANALYSIS DATE: 2023-01-11T04:45:18ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – crycryptor – 381134ea0f0be535b9d2ce8a94093576
Score: 10 MALWARE FAMILY: crycryptorTAGS:family:crycryptor, ransomwareMD5: 381134ea0f0be535b9d2ce8a94093576SHA1: 322aab72228b1a9c179696e600c1af335b376655ANALYSIS DATE: 2023-01-11T04:44:05ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 16386b9c1bde7c80723889785981bf32
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 16386b9c1bde7c80723889785981bf32SHA1: 0bc8a4dc49f16e81b14e5272a08f6934cd41bc17ANALYSIS DATE: 2023-01-11T04:45:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 2a5d39cc97d1d96989d6dee25f0d64b2
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 2a5d39cc97d1d96989d6dee25f0d64b2SHA1: ba2a9973ef498265e2763ab3cadc03535265f773ANALYSIS DATE: 2023-01-11T04:45:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – discovery – 2864e74ddbee0511dc655a73d2b96f2e
Score: 9 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomwareMD5: 2864e74ddbee0511dc655a73d2b96f2eSHA1: baa9d261dcbaa6a30b639c89e5208d78d0e20975ANALYSIS DATE: 2023-01-11T05:54:02ZTTPS: T1490, T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 8f9be4dad34d877842a70ca602201c1e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 8f9be4dad34d877842a70ca602201c1eSHA1: 80b757cd35aff9cb1e9ad2a3d0196e00f4a1c72fANALYSIS DATE: 2023-01-11T05:45:01ZTTPS: T1222, T1012, T1082, T1005,...
Malware Analysis – dcrat – c4e73a6963047ced86ad548cb7a572ca
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, discovery, evasion, exploit, infostealer, rat, spyware, stealer, vmprotectMD5: c4e73a6963047ced86ad548cb7a572caSHA1: 9a983d43e8790aed5b205c87a05b034fd468a999ANALYSIS DATE: 2023-01-11T05:26:06ZTTPS: T1102, T1031, T1562,...
Cobalt Stike Beacon Detected – 143[.]110[.]156[.]32:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]43[.]36[.]198:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]122[.]103[.]39:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]202[.]66:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]14[.]110[.]131:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 209[.]141[.]54[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – sodinokibi – fb9d11c5ff87dd9071ab44f4c562ca3e
Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:5, campaign:367, ransomwareMD5: fb9d11c5ff87dd9071ab44f4c562ca3eSHA1: 1e383b22a38c91373ba446a820d61883f282cb3eANALYSIS DATE: 2023-01-10T21:26:48ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 429f28184209bae8fde861606d5ec96f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 429f28184209bae8fde861606d5ec96fSHA1: cc0ac6987925c5e19f894e19e0a21afbd7440657ANALYSIS DATE: 2023-01-10T21:03:39ZTTPS: T1012, T1005, T1081, T1222,...
Malware Analysis – ransomware – d0dc1a6edd8ebd71b57770d1e38ea8e0
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d0dc1a6edd8ebd71b57770d1e38ea8e0SHA1: 0d4f1c6aebeae7542de3964709312752a2ecb0a4ANALYSIS DATE: 2023-01-10T20:44:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – f8ad7ea13f1df856f9f35534b6f7ee00
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: f8ad7ea13f1df856f9f35534b6f7ee00SHA1: ef4321d51ef1bd2b8c233af61e92416605ddd0ddANALYSIS DATE: 2023-01-10T21:23:38ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:22222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
