Cl0p Ransomware Victim: PG[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
OSINT
Cl0p Ransomware Victim: LASOLTEL[.]FR
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cl0p Ransomware Victim: LESLIESPOOL[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
PortexAnalyzerGUI – Graphical Interface For PortEx, A Portable Executable And Malware Analysis Library
Graphical interface for PortEx, a Portable Executable and Malware Analysis Library Download Releases page Features Header information from: MSDOS Header,...
Malware Analysis – djvu – 1d407d62287b6dabf3b5a3038916c716
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 1d407d62287b6dabf3b5a3038916c716SHA1: 185303d50c18ffb40571cf24bc0e0fbe5d221829ANALYSIS DATE: 2023-03-22T16:36:09ZTTPS: T1222, T1082, T1053, T1005, T1081,...
Malware Analysis – djvu – 4088027e3e902bac566da3c553a570cc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4088027e3e902bac566da3c553a570ccSHA1: 01c23b43a7fe5cb18af18b89f9a8f2b1e0dff477ANALYSIS DATE: 2023-03-22T16:06:17ZTTPS: T1012, T1082, T1005, T1081, T1222,...
Malware Analysis – djvu – c0836237f57db0801abad3db0d3e9311
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: c0836237f57db0801abad3db0d3e9311SHA1: 57e6a0c81b7ed624d44b0b33fc0f7b4ed1530144ANALYSIS DATE: 2023-03-22T16:01:04ZTTPS: T1005, T1081, T1130, T1112, T1222,...
Malware Analysis – djvu – ffdab25bdf8f3900e2541b47317cf1b9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: ffdab25bdf8f3900e2541b47317cf1b9SHA1: a594588b07d67da39b20fad718c6fce6d75027f6ANALYSIS DATE: 2023-03-22T16:03:04ZTTPS: T1130, T1112, T1222, T1053, T1005,...
Malware Analysis – djvu – 41a308b790065a19f3dac9d50768fd24
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 41a308b790065a19f3dac9d50768fd24SHA1: feb626e3bca5f0df603fcb350d8b9c1d15a9892cANALYSIS DATE: 2023-03-22T17:10:16ZTTPS: T1222, T1060, T1112, T1082, T1005,...
Malware Analysis – djvu – 4a41cc12fc116e7590c82ce633232d80
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4a41cc12fc116e7590c82ce633232d80SHA1: f74d84136c0727d1e35252878e4d9e6a03484bccANALYSIS DATE: 2023-03-22T17:13:57ZTTPS: T1222, T1005, T1081, T1012, T1082,...
Malware Analysis – ransomware – ab143512b0edba5e6a9435c6951de6db
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ab143512b0edba5e6a9435c6951de6dbSHA1: 7ff91fefeebcfb4d3ca536582e23c0433b56ded2ANALYSIS DATE: 2023-03-22T16:37:59ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – amadey – 301c0b6c9341de9df8fd19d5060690f6
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:pseudomanuscrypt, family:smokeloader, family:vidar, botnet:pub1, botnet:sprg, backdoor, discovery, loader, persistence, ransomware, spyware, stealer, trojanMD5: 301c0b6c9341de9df8fd19d5060690f6SHA1:...
Malware Analysis – djvu – eb7cde7a579009ffad981b0913e5eb80
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: eb7cde7a579009ffad981b0913e5eb80SHA1: 5a218c588fefa80e5caae1dce70b53e3a81a997eANALYSIS DATE: 2023-03-22T17:49:28ZTTPS: T1012, T1082, T1053, T1005, T1081,...
Malware Analysis – djvu – a6fadaa1eb6aa09bdf59fbe7bf7a412d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a6fadaa1eb6aa09bdf59fbe7bf7a412dSHA1: aac28bcfa92e4858d74986ad6b66adfd9d7d53bfANALYSIS DATE: 2023-03-22T17:31:56ZTTPS: T1005, T1081, T1012, T1082, T1060,...
Malware Analysis – djvu – e1eb13ebba30f934ea877664941086c7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: e1eb13ebba30f934ea877664941086c7SHA1: 6c7501843bb39591b25b920c477ef73a797a2b3dANALYSIS DATE: 2023-03-22T18:57:18ZTTPS: T1005, T1081, T1012, T1060, T1112,...
Malware Analysis – smokeloader – 97db31adf01533c265b499816678c8b0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 97db31adf01533c265b499816678c8b0SHA1: d3ece081db72c74da1e263a92e86936d5cb809d5ANALYSIS DATE: 2023-03-22T18:14:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released eight Industrial Control Systems (ICS) advisories on Tuesday, warning of...
New ‘Bad Magic’ Cyber Threat Disrupts Ukraine’s Key Sectors Amid War
Amid the ongoing war between Russia and Ukraine, government, agriculture, and transportation organizations located in Donetsk, Lugansk, and Crimea have...
NAPLISTENER: New Malware in REF2924 Group’s Arsenal for Bypassing Detection
The threat group tracked as REF2924 has been observed deploying previously unseen malware in its attacks aimed at entities in...
ScarCruft’s Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques
The North Korean advanced persistent threat (APT) actor dubbed ScarCruft is using weaponized Microsoft Compiled HTML Help (CHM) files to...
Preventing Insider Threats in Your Active Directory
Active Directory (AD) is a powerful authentication and directory service used by organizations worldwide. With this ubiquity and power comes...
LockBit 3.0 Ransomware Victim: kaycan[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cabinet-paillet[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: mangiainc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
