Cobalt Stike Beacon Detected – 43[.]156[.]25[.]232:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Malware Analysis – djvu – 5a5f6c2dcab8f664963408d20b0880d1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 5a5f6c2dcab8f664963408d20b0880d1SHA1: 1cd46f1cf7464f06ab6b54a685d95060fe8a75ebANALYSIS DATE: 2022-12-16T22:10:51ZTTPS: T1060, T1112, T1222, T1082, T1005, T1081,...
Malware Analysis – ransomware – 03c214ed5ed9cf06d1268c7ea3d5c5e0
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 03c214ed5ed9cf06d1268c7ea3d5c5e0SHA1: 3d9a14b6868dc6310d404f359125cf9da58014baANALYSIS DATE: 2022-12-16T21:58:12ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – smokeloader – 9475023f1f830aa890cf33c8700a3380
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9475023f1f830aa890cf33c8700a3380SHA1: f103c70f1ead0c9fe7a169c58131db7cdcf49f5fANALYSIS DATE: 2022-12-16T21:22:49ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – danabot – 25e1c36abd30bb9789820a87925ed873
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...
Agenda Ransomware Uses Rust to Target More Vital Industries
This year, various ransomware-as-a-service groups have developed versions of their ransomware in Rust, including Agenda. Agenda's Rust variant has targeted...
Former Twitter employee sentenced to 3.5 years in jail for spying on behalf of Saudi Arabia
An ex Twitter employee has been sentenced to three-and-a-half years in prison for spying on individuals on behalf of Saudi...
Social Blade discloses security breach
Social media analytics service Social Blade disclosed a security breach after a database containing allegedly stolen data from the company...
Karakurt Ransomware Victim: TLC
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Malware Analysis – djvu – 825450439c2aff52b4cb39ea80ac2a3b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 825450439c2aff52b4cb39ea80ac2a3bSHA1: b5080c44dc3c14bca0adcc5e27137566647d99c7ANALYSIS DATE:...
Malware Analysis – djvu – 11373938ba00f6f0d8d9721934deb0d7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 11373938ba00f6f0d8d9721934deb0d7SHA1: 52bd55a7af0dd44fe4681569c52f761a6b7d7a25ANALYSIS DATE: 2022-12-16T15:04:05ZTTPS: T1222, T1082, T1053, T1005, T1081, T1012,...
Malware Analysis – ransomware – e39addea75acbce3c043a5928ff3abae
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e39addea75acbce3c043a5928ff3abaeSHA1: 498d7ff507388dd14a573e67d710d3fdbdd16327ANALYSIS DATE: 2022-12-16T16:00:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 690e39cbffe340fcbf4db885c7f9ebfa
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 690e39cbffe340fcbf4db885c7f9ebfaSHA1: 6ff465439c7a54784c7df692ce495843cb12f750ANALYSIS DATE: 2022-12-16T15:44:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – smokeloader – 8e345f8a3549c12c711ad666304b8196
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8e345f8a3549c12c711ad666304b8196SHA1: c889ed9f45ad3462948a6b6cd98b80bd801987beANALYSIS DATE: 2022-12-16T15:41:45ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 779e23df789af919e840b393dc26f8d8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 779e23df789af919e840b393dc26f8d8SHA1: 6efc9a81f30b9c1474f13042d0b119b1ae503577ANALYSIS DATE:...
Malware Analysis – evasion – 21fc95441e68d60cd8a2674fb96d60a6
Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 21fc95441e68d60cd8a2674fb96d60a6SHA1: 34e565e1d46f7c0b812229e6ac2f1d009d9e165dANALYSIS DATE: 2022-12-16T16:12:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – smokeloader – 77b276c347598aea212d16a6fbe1b927
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 77b276c347598aea212d16a6fbe1b927SHA1: 1aaa5729768a7f732f23052b709a21617573e05fANALYSIS DATE: 2022-12-16T16:19:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 8afc877c5a7f2312f8f15e5841b8dd33
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 8afc877c5a7f2312f8f15e5841b8dd33SHA1: ff69c1b70ad7b896d5ec38da580dfcf58e427032ANALYSIS DATE: 2022-12-16T16:13:18ZTTPS: T1012, T1082, T1060, T1112, T1053, T1005,...
Malware Analysis – smokeloader – fa3c884cd50596bd653c756bac035d80
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fa3c884cd50596bd653c756bac035d80SHA1: a14c295a1bff83511d82ec2c9a251e059e1a5c6aANALYSIS DATE: 2022-12-16T16:12:57ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 8a64beecdd29c0c3d767b687036d2b92
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 8a64beecdd29c0c3d767b687036d2b92SHA1: 05e951697f03dcca95c80bed95434a6eab380a5dANALYSIS DATE:...
Malware Analysis – djvu – 8a64beecdd29c0c3d767b687036d2b92
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 8a64beecdd29c0c3d767b687036d2b92SHA1: 05e951697f03dcca95c80bed95434a6eab380a5dANALYSIS DATE:...
CISA: FBI, FDA OCI, and USDA Release Joint Cybersecurity Advisory Regarding Business Email Compromise Schemes Used to Steal Food
FBI, FDA OCI, and USDA Release Joint Cybersecurity Advisory Regarding Business Email Compromise Schemes Used to Steal Food The Federal...
Malware Analysis – evasion – 9b41cf5e2a4ea79e030472bfdd72a6e7
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9b41cf5e2a4ea79e030472bfdd72a6e7SHA1: edb40e395d0d81b56c43d0008e3664cdf124bc14ANALYSIS DATE: 2022-12-16T17:30:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 077b7f24c33b31d88fb23c169a137d2e
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 077b7f24c33b31d88fb23c169a137d2eSHA1: b47eda1e2f6b6708c83a67516898ef5c7cb7da43ANALYSIS DATE: 2022-12-16T16:32:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
