Cobalt Stike Beacon Detected – 82[.]157[.]171[.]28:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 156[.]234[.]180[.]236:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]216[.]232:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 83[.]217[.]11[.]6:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 129[.]150[.]63[.]166:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]219[.]164[.]202:60001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – b3fae3bb53cb2064fc8db538ee720db5
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b3fae3bb53cb2064fc8db538ee720db5SHA1: 749fa088eb22b89c2a319056e430445e0247a096ANALYSIS DATE: 2022-12-01T06:57:59ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – f055a132de2ad3733859b7db2a2a584d
Score: 1 MALWARE FAMILY: TAGS:MD5: f055a132de2ad3733859b7db2a2a584dSHA1: e729f54392e6503f3d60efddb4785fab05719d8dANALYSIS DATE: 2022-12-01T06:50:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – c74e5457aee3f8a0c3cf9f44c6337b28
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: c74e5457aee3f8a0c3cf9f44c6337b28SHA1: f9b7dc912a5f2d794e9638d8122c155527dae270ANALYSIS DATE: 2022-12-01T07:02:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 5061192e1f8ff604faa54e591902697c
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 5061192e1f8ff604faa54e591902697cSHA1: 42ea8d3ad02eb1dd8788470c67e899740163b1c1ANALYSIS DATE: 2022-12-01T07:02:17ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 332df038203a269587fa82c847b1ec2a
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 332df038203a269587fa82c847b1ec2aSHA1: ec1f664e12cdf940613ab67b62bf86d40c2a2f30ANALYSIS DATE: 2022-12-01T07:02:19ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 3a476c1c07b09559638e30343d399f62
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 3a476c1c07b09559638e30343d399f62SHA1: 4df58e7eb0b5320d345c3d17710f4a78fa75f3f3ANALYSIS DATE: 2022-12-01T07:02:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – d6d9f6a8af1c487f5c1318691824547b
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:1148, botnet:1881, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – dcrat – e2e35779cd5d8accf0e3bca77bb42acf
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: e2e35779cd5d8accf0e3bca77bb42acfSHA1:...
Malware Analysis – evasion – 688e0b37794395cfecaf9cc519e3c26a
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 688e0b37794395cfecaf9cc519e3c26aSHA1: d215d4166dfa07be393459c99067319036eb80baANALYSIS DATE: 2022-12-03T09:47:51ZTTPS: T1112, T1107, T1490, T1012, T1120, T1082, T1031, T1562, T1489 ScoreMeaningExample10Known...
Malware Analysis – ransomware – 05827b02f4a6d137ce6387cc9f5cc766
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 05827b02f4a6d137ce6387cc9f5cc766SHA1: 8e8cc45d626a7f77e330ee4a1cf01c7ae551e097ANALYSIS DATE: 2022-12-01T07:02:30ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – amadey – affd37c210ddcb39e4431f4f441092e6
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:1148, botnet:1881, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – djvu – a2c8f1c936514516c4c2b4f27960323b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a2c8f1c936514516c4c2b4f27960323bSHA1: ef22c1fdb813aeea7ffffc15e2566c5bcc59e70aANALYSIS DATE: 2022-12-03T11:53:29ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – 162c1c9f1c74b68623af9f8d69435f5b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 162c1c9f1c74b68623af9f8d69435f5bSHA1: 79d279c3d135c36337dd4f035d19f43e33d97392ANALYSIS DATE: 2022-12-03T10:51:15ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – djvu – 10e9b3714169be1922720a1d5c01a774
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 10e9b3714169be1922720a1d5c01a774SHA1: a051d0cefda56209540a1291fc79c4b23502a6a5ANALYSIS DATE: 2022-12-03T10:29:38ZTTPS: T1005, T1081, T1222, T1082,...
Daily Vulnerability Trends: Sat Dec 03 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-33942Protection mechanism failure in the Intel(R) DCM software before version 5.0 may...
Indicators of compromise (IOCs): how we collect and use them
It would hardly be an exaggeration to say that the phrase “indicators of compromise” (or IOCs) can be found in...
A new Linux flaw can be chained with other two bugs to gain full root privileges
Qualys researchers demonstrated how to chain a new Linux flaw with two other two issues to gain full root privileges...
Royal Ransomware Victim: Summit
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
