Cobalt Stike Beacon Detected – 106[.]12[.]134[.]91:777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 43[.]142[.]60[.]207:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 69[.]172[.]74[.]52:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – cc3dec5ba3f97a58aba84f195f56a3ac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: cc3dec5ba3f97a58aba84f195f56a3acSHA1: b2ef30ae4c62b330584c1783c12deb4dac13e1e4ANALYSIS DATE: 2022-12-12T10:53:48ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – smokeloader – 5e8b41e37d55fbb987d824e3010caafe
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5e8b41e37d55fbb987d824e3010caafeSHA1: 450562fc2cb9a92ca70573bad727e32ed5d171ddANALYSIS DATE: 2022-12-12T10:49:44ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – joker – 16a4cbdb16994f328003f63a8b16a1ab
Score: 10 MALWARE FAMILY: jokerTAGS:family:joker, evasion, infostealer, ransomware, trojanMD5: 16a4cbdb16994f328003f63a8b16a1abSHA1: 87b027fa2a3bf188d5945720bc16dc1f9469cf77ANALYSIS DATE: 2022-12-12T10:57:02ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 183ad97d55d1170f21a8d10a8339fdab
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 183ad97d55d1170f21a8d10a8339fdabSHA1: 427b302690b2418b5b414fee3ac6ce585e6fe375ANALYSIS DATE: 2022-12-12T10:56:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 103[.]155[.]92[.]229:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]12[.]60:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]154[.]57[.]146:8002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]192[.]11[.]175:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – e2aa8611ff12300ed35713bd5b396b2e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e2aa8611ff12300ed35713bd5b396b2eSHA1: 21a61539cbd78c50ae43234657b0d7e6a6a81010ANALYSIS DATE: 2022-12-12T11:14:49ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – dcrat – e2a32071d75e13ad12354cde287a1469
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – dcrat – ae28646e93a50694398096751b0e149f
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – djvu – 88c46c7fa052089249e07fc1425e07bd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 88c46c7fa052089249e07fc1425e07bdSHA1: f0e3c48f0aa75999b5f790faf3930b87e892b664ANALYSIS DATE: 2022-12-12T11:01:50ZTTPS: T1012, T1082, T1005, T1081,...
LockBit 3.0 Ransomware Victim: amazing-global[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: jieh[.]vn
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
TrueBot infections were observed in Clop ransomware attacks
Researchers reported an increase in TrueBot infections, attackers have shifted from using malicious emails as their primary delivery method to other techniques....
Daily Vulnerability Trends: Mon Dec 12 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42703mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to...
Malware Analysis – smokeloader – 9b680fe6c94c5c5efd8d1ee47e6bc9a3
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9b680fe6c94c5c5efd8d1ee47e6bc9a3SHA1: 07700e18220654e8334dd36db10c413543ab5f59ANALYSIS DATE: 2022-12-12T04:24:56ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 3a02deed11f7ff4dbc1188d201ad164a
Score: 8 MALWARE FAMILY: TAGS:MD5: 3a02deed11f7ff4dbc1188d201ad164aSHA1: 5c935f5c25c2975ef384878bb094567fb19519c9ANALYSIS DATE: 2022-12-12T04:09:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 6ae2c7e69f7af191c459978a7ffbb2d6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6ae2c7e69f7af191c459978a7ffbb2d6SHA1: 64c504634fb86ae0cde436c50cefee73fb0f8e8fANALYSIS DATE: 2022-12-12T03:58:30ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – evasion – e9663f1b8ec8a5e2c130f4ff496a43d8
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: e9663f1b8ec8a5e2c130f4ff496a43d8SHA1: ed373bf96e834f4bf920220cc61a84f064e1275aANALYSIS DATE: 2022-12-07T09:27:09ZTTPS: T1012, T1120, T1082, T1158, T1112, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 352a744e8b4258b7729581602709800a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 352a744e8b4258b7729581602709800aSHA1: a06aa0539924ca45f63ce74783d593e97ba1502cANALYSIS DATE: 2022-12-12T05:32:53ZTTPS: T1053, T1005, T1081, T1130,...
