CISA: CISA Releases Phishing Infographic
CISA Releases Phishing Infographic Today, CISA published a Phishing Infographic to help protect both organizations and individuals from successful phishing operations....
OSINT
Pwn2Own Toronto 2022 Day 2: Participants earned $281K
Pwn2Own Toronto 2022 Day Two – Participants demonstrated exploits for smart speaker, smartphone, printer, router, and NAS. On the first...
Malware Analysis – – d80cdb5a52e2f47dbd3ef4c8f43bcc13
Score: 1 MALWARE FAMILY: TAGS:MD5: d80cdb5a52e2f47dbd3ef4c8f43bcc13SHA1: 69a95fe11c575f0ec77958e0becd197c26df1e3cANALYSIS DATE: 2022-12-04T20:22:24ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – e592bcc16c6a003632860526f0b88da4
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: e592bcc16c6a003632860526f0b88da4SHA1: 0c4893f1d0cb53d45da865c52fa42bf4c50d3e1fANALYSIS DATE: 2022-12-04T20:39:49ZTTPS: T1082, T1012, T1060, T1112, T1158, T1088,...
Malware Analysis – evasion – e85430e72cb7ede842d91ce17c95f7c0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: e85430e72cb7ede842d91ce17c95f7c0SHA1: c46fca8347141624501ee133d34e617609677debANALYSIS DATE: 2022-12-04T20:40:08ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – bootkit – a61feb0a318c12f8fe9345f0d02617f0
Score: 8 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, exploit, persistenceMD5: a61feb0a318c12f8fe9345f0d02617f0SHA1: 4c927ecb6e5062f5f4f27301724a3931adcc7e1fANALYSIS DATE: 2022-12-04T20:51:49ZTTPS: T1067, T1112, T1130, T1082, T1222 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – edfec710027e745173b2720cc3ff5b5f
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: edfec710027e745173b2720cc3ff5b5fSHA1: d8f73eaac385ae73a13b504b9cf3aa94df63e22fANALYSIS DATE: 2022-12-04T20:40:17ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 47b263d65779c518a1fdb3d6cb9069b3
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 47b263d65779c518a1fdb3d6cb9069b3SHA1: c0216f6785b9ded9e054bb5fb98a08604d2a0bc9ANALYSIS DATE: 2022-12-04T21:14:29ZTTPS: T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – collection – 7ed40a195807b97cd4c4e1165852e3fc
Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: 7ed40a195807b97cd4c4e1165852e3fcSHA1: 926faad662a9b4a431afa8eba74b75f839613153ANALYSIS DATE: 2022-12-04T21:08:07ZTTPS: T1060, T1112, T1107, T1490, T1082, T1114 ScoreMeaningExample10Known...
Malware Analysis – evasion – b99fac5cbf120d27ed5fcf3c3e1ea890
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b99fac5cbf120d27ed5fcf3c3e1ea890SHA1: 15c2258fd304a14e6980a17755d598c67fa97a33ANALYSIS DATE: 2022-12-08T16:38:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – cb52c98edd0d30a565911adda8da6d65
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, trojanMD5: cb52c98edd0d30a565911adda8da6d65SHA1: 8f2ed797c15eed64a2bd7dbfe3d024308e4b1e7eANALYSIS DATE: 2022-12-08T15:31:22ZTTPS: T1012, T1082, T1120, T1114,...
Malware Analysis – djvu – 03b9448171605dbc7f5954821007cd12
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 03b9448171605dbc7f5954821007cd12SHA1: d6ce35fdbe1b6dc08f311f907c9caa4a5b578ea3ANALYSIS...
Malware Analysis – djvu – 55379623a834db376d34ba13fd2f0b67
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 55379623a834db376d34ba13fd2f0b67SHA1: e189b76fb2fa54cab0aa7146a636310e9189c2d9ANALYSIS DATE: 2022-12-08T16:38:06ZTTPS: T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA malware...
CISA: CISA Releases Three Industrial Control Advisories
CISA Releases Three Industrial Control Advisories CISA has released three (3) Industrial Control Systems (ICS) advisories on 08 December 2022....
Malware Analysis – djvu – ac4364e2501dfeecfc23cf8c4541e379
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: ac4364e2501dfeecfc23cf8c4541e379SHA1: 0eb439bb98a04e5014fc0987ef0ce2c3bb329630ANALYSIS DATE: 2022-12-08T17:35:11ZTTPS: T1082, T1012, T1053, T1060, T1112,...
Malware Analysis – evasion – d01c432c8ecefb66f3f2a4aa0cfd675b
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: d01c432c8ecefb66f3f2a4aa0cfd675bSHA1: 7deb1ea6583cb764c5316b0c7d82d70f6b3b881dANALYSIS DATE: 2022-12-08T17:04:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 03f6c75025cf436aee8a07beefd087ba
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 03f6c75025cf436aee8a07beefd087baSHA1: 24c62c9371834f00804b39e6f73bcf68ad5c9161ANALYSIS DATE: 2022-12-08T16:50:27ZTTPS:...
Malware Analysis – djvu – ada2ac79c27a9bedd60f904ec6b80daa
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, trojanMD5: ada2ac79c27a9bedd60f904ec6b80daaSHA1: ef7a2a2765daf23b029c5d9f8e92a0b51974508dANALYSIS DATE: 2022-12-08T17:32:16ZTTPS: T1060, T1112, T1222, T1082,...
Android app with over 5m downloads leaked user browsing history
The Android app Web Explorer – Fast Internet left an open instance, exposing a trove of sensitive data that malicious...
APT37 used Internet Explorer Zero-Day in a recent campaign
Google warns that the North Korea-linked APT37 group is exploiting Internet Explorer zero-day flaw to spread malware. North Korea-linked APT37...
R4Ven – Track Ip And GPS Location
Track User's Smartphone/Pc Ip And Gps Location. The tool hosts a fake website which uses an iframe to display a...
Malware Analysis – spyware – d66210ecc0533348c07569fac5b280a5
Score: 7 MALWARE FAMILY: spywareTAGS:spyware, stealerMD5: d66210ecc0533348c07569fac5b280a5SHA1: 9cb944d9eea862d3b9aaced3f3c6811b7f21120aANALYSIS DATE: 2022-12-04T15:48:18ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – cryptolocker – 374f74def24ea6afad4e5f4b15dcd263
Score: 10 MALWARE FAMILY: cryptolockerTAGS:family:cryptolocker, persistence, ransomwareMD5: 374f74def24ea6afad4e5f4b15dcd263SHA1: 2c8d39345f5fdf44e8ef5e5175a53dace47103bcANALYSIS DATE: 2022-12-04T16:04:28ZTTPS: T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – evasion – cb4f0bf118a549a0fbb5cf5cfff09690
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealerMD5: cb4f0bf118a549a0fbb5cf5cfff09690SHA1: 52ef613a56d71ff8caeb1eafb789129d88550b63ANALYSIS DATE: 2022-12-04T16:06:42ZTTPS: T1004, T1112, T1005, T1081, T1018, T1082, T1060...
