OSINT

Malware Analysis – xorist – 17918fb06d51823743387d4d7a1c7e33

February 21, 2023

Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 17918fb06d51823743387d4d7a1c7e33SHA1: b5e38e285f983ed6b6065525f67b60c9e671517bANALYSIS DATE: 2023-02-21T11:53:31ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...

Malware Analysis – neshta – 7c68b6a3494c0f2d1197d8bb5d787494

February 21, 2023

Score: 10 MALWARE FAMILY: neshtaTAGS:family:neshta, family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 7c68b6a3494c0f2d1197d8bb5d787494SHA1: 15292934b45b68f367e3a868fb71a7fa2d8a77b9ANALYSIS DATE: 2023-02-21T11:53:29ZTTPS: T1112, T1042, T1005, T1081, T1082,...

Researchers Warn of ReverseRAT Backdoor Targeting Indian Government Agencies

February 21, 2023

A spear-phishing campaign targeting Indian government entities aims to deploy an updated version of a backdoor called ReverseRAT. Cybersecurity firm...

Daily Vulnerability Trends: Tue Feb 21 2023

February 21, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-47966Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow...

Malware Analysis – djvu – ce97b8938c3342b78ee9f45c9cfa528f

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ce97b8938c3342b78ee9f45c9cfa528fSHA1: 1cecd17eb48803c393e44b39b4f887ee57f19541ANALYSIS DATE: 2023-02-21T03:16:18ZTTPS: T1005, T1081, T1012, T1082,...

Malware Analysis – djvu – e19cb0a09fa6ad4162d2faed1772a2ea

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e19cb0a09fa6ad4162d2faed1772a2eaSHA1: 0c5302720091348b33d5f21d76cc4df9bc7df503ANALYSIS DATE: 2023-02-21T03:04:11ZTTPS: T1082, T1005, T1081, T1012,...

Malware Analysis – djvu – 57bea51fa7d68734cd7d73f4adf78995

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:pseudomanuscrypt, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, loader, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...

Malware Analysis – djvu – 0725ad29651b7b0a49f213dc38f73185

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 0725ad29651b7b0a49f213dc38f73185SHA1: 05597deb81686634992d0e2546a70dd1d24fc5daANALYSIS DATE:...

Malware Analysis – djvu – ea2f8aa6c71ea98450efdf5d62d4660a

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ea2f8aa6c71ea98450efdf5d62d4660aSHA1: cc2f3e843d8be20b2e40a59f65f0a141b7c626a9ANALYSIS DATE: 2023-02-21T05:48:05ZTTPS: T1012, T1082, T1053, T1060,...

Malware Analysis – djvu – 45f9335fcefc8ff05db68a33b618b079

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 45f9335fcefc8ff05db68a33b618b079SHA1: 1928b38120ab18f78619fc4b2b477e406bfb10cfANALYSIS DATE:...

Malware Analysis – djvu – 0baa2b5fe7fdcf60eac072abc8a3f846

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 0baa2b5fe7fdcf60eac072abc8a3f846SHA1: e6db234e2d4c281864b1917603431d37fc1d9ccaANALYSIS DATE: 2023-02-21T05:38:39ZTTPS: T1082, T1005, T1081, T1012,...

Malware Analysis – djvu – e703fdec53502a33899a69a88033a1e9

February 21, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e703fdec53502a33899a69a88033a1e9SHA1: 8df68f60069eadcd4a039d8a87f9c88ba7aba327ANALYSIS DATE: 2023-02-21T04:52:37ZTTPS: T1060, T1112, T1053, T1005,...