Cobalt Stike Beacon Detected – 43[.]134[.]231[.]129:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 163[.]123[.]142[.]146:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]195[.]254[.]159:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – amadey – 3313c4807243ab6363f117606b508dc0
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 3313c4807243ab6363f117606b508dc0SHA1: d9656c20ef55f12036ccc3524964e89b25d27ac9ANALYSIS...
Malware Analysis – orcus – 6261253f359ef789149e07490c078700
Score: 10 MALWARE FAMILY: orcusTAGS:family:orcus, discovery, persistence, ransomware, rat, spyware, stealerMD5: 6261253f359ef789149e07490c078700SHA1: f7131dbd7fa8a645865e651c7a697d51efa52a73ANALYSIS DATE: 2022-12-25T08:39:52ZTTPS: T1012, T1120, T1082, T1112, T1042,...
Malware Analysis – amadey – cf2fd271aeaecf04b61219f48d59b774
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: cf2fd271aeaecf04b61219f48d59b774SHA1: d7ebfeae7801392c2ca900c0572a675359759067ANALYSIS DATE: 2022-12-25T11:48:16ZTTPS: T1012,...
Malware Analysis – smokeloader – 0832c102331af5307c561a5dba7380a5
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0832c102331af5307c561a5dba7380a5SHA1: e5ad2eecf7dab71f9d55a28e9594d78d10dbfbbfANALYSIS DATE: 2022-12-25T09:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 79763fbb5ac3ef82b51193d28c32b6a6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 79763fbb5ac3ef82b51193d28c32b6a6SHA1: 88dc47b65b432e06a0056a070f08ab191b3c8990ANALYSIS DATE: 2022-12-25T10:26:04ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 05778645b4fac7d10e26c0e960806afb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 05778645b4fac7d10e26c0e960806afbSHA1: f9dafaa24102c513b7ad66262f87456794c9a042ANALYSIS DATE: 2022-12-25T11:35:09ZTTPS: T1005, T1081, T1060, T1112, T1222, T1082,...
Daily Vulnerability Trends: Sun Dec 25 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41040Microsoft Exchange Server Elevation of Privilege Vulnerability.CVE-2022-46169Cacti is an open source platform...
Malware Analysis – smokeloader – d95589c8fbd49a9f0dc47886e4b99cf6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d95589c8fbd49a9f0dc47886e4b99cf6SHA1: 25a60d20480a868c2acb271b452bd07b6c54d8a2ANALYSIS DATE: 2022-12-25T03:01:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 7c24e7b69fb12ad039f3b7396dd6fd32
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 7c24e7b69fb12ad039f3b7396dd6fd32SHA1: 3f68285a80953248f7fa6fe7b9db41ac9907e45eANALYSIS DATE: 2022-12-25T03:48:08ZTTPS: T1012, T1082, T1053, T1005, T1081, T1222,...
Malware Analysis – djvu – dae8500aae0d729e44c90ece88c5f346
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: dae8500aae0d729e44c90ece88c5f346SHA1: 09859eb420cd3aa9e7dc71e97201f0f38df7e4ccANALYSIS DATE: 2022-12-25T05:32:07ZTTPS: T1060, T1112, T1005, T1081, T1222, T1082,...
Malware Analysis – smokeloader – c6c8211f6d8201310b934f270a93ab64
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c6c8211f6d8201310b934f270a93ab64SHA1: 070c740d75269c32e1819a21615721ff8ff0b832ANALYSIS DATE: 2022-12-25T05:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 6dd6384670baa5423c76f1bbde4235c9
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6dd6384670baa5423c76f1bbde4235c9SHA1: 3ca565f27bc7a6d87eab5c5e1df038944789401fANALYSIS DATE: 2022-12-25T04:03:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 43[.]138[.]105[.]228:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]186[.]9:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]60[.]150[.]117:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]160[.]193[.]145:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 2909f77128b92348349a8c124048ed79
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2909f77128b92348349a8c124048ed79SHA1: fdffc675fabeea6f7b2a53bc66b5b8150922eaa2ANALYSIS DATE: 2022-12-24T21:16:38ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 35[.]75[.]73[.]32:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 311c3aac0ea507e2e10ff88fccb56c0a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 311c3aac0ea507e2e10ff88fccb56c0aSHA1: 553d0012c5b15f670894be85c308bf9ea4bf53f0ANALYSIS DATE: 2022-12-24T21:31:09ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – 1cd8b593c078ed11ca602da358452c48
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 1cd8b593c078ed11ca602da358452c48SHA1: 801efb1fdb58c0d8e64bff1f191246532f173176ANALYSIS...
Cobalt Stike Beacon Detected – 43[.]139[.]7[.]93:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
