Cobalt Stike Beacon Detected – 47[.]104[.]195[.]224:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 47[.]99[.]188[.]174:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – e16b5576b95393b3665cd557a11c3ca7
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e16b5576b95393b3665cd557a11c3ca7SHA1: 3af32b357fcace447b6474f4105f62159eae6d3fANALYSIS DATE: 2022-12-11T08:59:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – dcrat – e5760df2c65c11d905780331e136cfc7
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – djvu – 7011a50374f20222e50adbf8c57d1730
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 7011a50374f20222e50adbf8c57d1730SHA1: f96e41f353a7b2b79afcf52863d5569297104b2cANALYSIS DATE: 2022-12-11T09:41:48ZTTPS: T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – b85200da07534670c19a452e8cf94d40
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: b85200da07534670c19a452e8cf94d40SHA1: e9debd6ea4862a077cfa269799c0c70d507f6462ANALYSIS DATE: 2022-12-11T11:45:22ZTTPS: T1222, T1053, T1005, T1081,...
MuddyWater APT group is back with updated TTPs
The Iran-linked MuddyWater APT is targeting countries in the Middle East as well as Central and West Asia in a new campaign....
Daily Vulnerability Trends: Sun Dec 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-44228Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1)...
Malware Analysis – upx – 7e3f8869d34b959d0b4381edae96e70a
Score: 8 MALWARE FAMILY: upxTAGS:upxMD5: 7e3f8869d34b959d0b4381edae96e70aSHA1: cd3c93170a853fb61324c4a7aba76f9fe61f472cANALYSIS DATE: 2022-12-06T15:12:41ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – b750a814e27003acd2de430638e637a5
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: b750a814e27003acd2de430638e637a5SHA1: b797699ec9e70a05112ece86f5583881a911b56cANALYSIS DATE: 2022-12-06T15:43:34ZTTPS: T1158, T1012, T1120, T1082, T1112, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – becd0d98fcc5851e2096d2e17a9a1983
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: becd0d98fcc5851e2096d2e17a9a1983SHA1: 5065dd217c08d075a1db7cea02cc159467b8f29fANALYSIS DATE: 2022-12-11T04:48:33ZTTPS: T1060, T1112, T1082, T1012, T1053,...
Malware Analysis – ransomware – 8a3450d84f03d9ea8abb543d2ba41288
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8a3450d84f03d9ea8abb543d2ba41288SHA1: 819576e1d411354fb7102a6e64e0aaeaf29af450ANALYSIS DATE: 2022-12-11T04:30:05ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – dcrat – 3c10dc9df5b42968e8bbe67387bc30a2
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Cobalt Stike Beacon Detected – 91[.]245[.]254[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]242[.]217[.]59:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]209[.]82[.]138:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]130[.]38[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 125[.]124[.]127[.]206:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]108[.]155:800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]98[.]50[.]48:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]209[.]82[.]138:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]190[.]139:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]251[.]86[.]24:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]71[.]8[.]186:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
