LockBit 3.0 Ransomware Victim: wmich[.]edu
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
OSINT
LockBit 3.0 Ransomware Victim: df[.]senac[.]br
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: nokair[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: princepalace[.]co[.]th
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: haeco[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Application Security vs. API Security: What is the difference?
As digital transformation takes hold and businesses become increasingly reliant on digital services, it has become more important than ever...
APT-C-36 Strikes Again: Blind Eagle Hackers Target Key Industries in Colombia
The threat actor known as Blind Eagle has been linked to a new campaign targeting various key industries in Colombia....
Cobalt Stike Beacon Detected – 161[.]97[.]96[.]177:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 109[.]206[.]240[.]91:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]136[.]15[.]252:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 137[.]220[.]194[.]64:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]3[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]59[.]203[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]115[.]245[.]82:2233
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 581823c1dc821bf51d22273d260ac1a3
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 581823c1dc821bf51d22273d260ac1a3SHA1: 83f5b4d8cf445bdda820f95e38e0470020068167ANALYSIS DATE: 2023-02-28T09:42:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 7945fc29d09a8257d0b7e38d9aa40b8c
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7945fc29d09a8257d0b7e38d9aa40b8cSHA1: bc460e344dcf1303f08d3544706fbcb59735d975ANALYSIS DATE: 2023-02-28T09:36:29ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 3[.]115[.]104[.]192:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]40[.]212[.]230:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]201[.]137:8086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]77[.]189:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – a822f2c5685b5071d945f53a75f31b47
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a822f2c5685b5071d945f53a75f31b47SHA1: 0f7323a6fd73a36da8384f00c50360f69ba28f6aANALYSIS DATE: 2023-02-28T10:32:36ZTTPS: T1082, T1053, T1012, T1005, T1081,...
Malware Analysis – djvu – 9fa7c62a4aac9c219defa886b6e6b01a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 9fa7c62a4aac9c219defa886b6e6b01aSHA1: d040a3a9157498b8946829c87e0a21e35168e537ANALYSIS DATE: 2023-02-28T10:20:33ZTTPS: T1222, T1012, T1082, T1060, T1112,...
Malware Analysis – djvu – 4125fa73b85056ccd163fc08307f6d61
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 4125fa73b85056ccd163fc08307f6d61SHA1: e4d91a6c035a17de15665fdfbba7f0bbc6ee2272ANALYSIS DATE: 2023-02-28T10:02:14ZTTPS: T1012,...
Malware Analysis – djvu – 35ae0e39993e000deb10e26406b7846e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 35ae0e39993e000deb10e26406b7846eSHA1: 421e61dca4f3d9e7e471e6d646f8440b6ce63a84ANALYSIS DATE: 2023-02-28T10:21:19ZTTPS: T1082, T1053, T1012, T1005, T1081,...
