Cobalt Stike Beacon Detected – 42[.]192[.]19[.]75:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 47[.]243[.]31[.]199:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 156[.]234[.]180[.]235:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]8[.]121[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 45[.]137[.]117[.]219:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Malware Analysis – amadey – 5d68f1c394a5b45caa31567eb295da8a
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1148, botnet:517, botnet:lege, backdoor, collection, discovery, infostealer, persistence, ransomware, rat,...
Malware Analysis – amadey – 280610964b3447e00cf87e7a2116db06
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:1148, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...
Malware Analysis – djvu – d8d71a967f8cd0c1bcaf41f63e702a61
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d8d71a967f8cd0c1bcaf41f63e702a61SHA1: 668d793a13b3ad46c92faeae7e850d5167c62fc5ANALYSIS DATE: 2022-12-01T23:52:08ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 22498c1dce9fa5e8a02c9bb39c4329b4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 22498c1dce9fa5e8a02c9bb39c4329b4SHA1: 02a5a0fe6d09669e2f525d89ca38c77d6a362188ANALYSIS DATE: 2022-12-01T22:30:09ZTTPS: T1005, T1081, T1012, T1222,...
New Go-based Redigo malware targets Redis servers
Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Researchers from security firm...
Top 3 Non-Technical Cybersecurity Trends for 2023
A strong cybersecurity strategy isn’t just about choosing the right tools. Cybersecurity experts Greg Young and William Malik discuss three...
CISA: #StopRansomware: Cuba Ransomware
#StopRansomware: Cuba Ransomware Today, the Federal Bureau of Investigation (FBI) and CISA released a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba...
Karakurt Ransomware Victim: Trantor
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Malware Analysis – evasion – b91e11a7755a47d91fd3595900bf19eb
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: b91e11a7755a47d91fd3595900bf19ebSHA1: 4638226e9cad1ab5d2379999433834f547cb2b6cANALYSIS DATE: 2022-11-30T02:02:41ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – c41b65a6fd126476b33cd275cda7c842
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c41b65a6fd126476b33cd275cda7c842SHA1: b22360d30d999df2ab08212ce9e37bc9754f8cb4ANALYSIS DATE: 2022-12-01T15:06:54ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – ransomware – dc9a9081109f9e5a66b81a3692648c0b
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: dc9a9081109f9e5a66b81a3692648c0bSHA1: 048f240ad00f8318a63a332d043ea1c85f73ba91ANALYSIS DATE: 2022-12-01T15:28:36ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – ransomware – b864e48610688b0139d84bcd63fd2878
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b864e48610688b0139d84bcd63fd2878SHA1: 204daf52fa7099561dfbcf50758475cb79036ce5ANALYSIS DATE: 2022-12-01T15:31:21ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – d9e5a4ebf3b74e879d0acb16c43ed6de
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – redline – 60c672bf83f9ee919034423f7c9385f6
Score: 10 MALWARE FAMILY: redlineTAGS:family:redline, family:smokeloader, botnet:r102, backdoor, collection, infostealer, ransomware, trojanMD5: 60c672bf83f9ee919034423f7c9385f6SHA1: 4a262fce23796b58a08f7e953f33faf726ed1790ANALYSIS DATE: 2022-12-01T15:34:51ZTTPS: T1012, T1120, T1082, T1114...
Malware Analysis – amadey – 3326681ef0261f9d4ae5251d0c0c3c6b
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – ransomware – 4ec86f1eb7f05d34af99885f733c3c5b
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 4ec86f1eb7f05d34af99885f733c3c5bSHA1: 0d7cdf3d9349911b7922760f697a7bafc745cd18ANALYSIS DATE: 2022-12-01T16:31:03ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – f272230670f1b845fdbf007fac1ff9ca
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f272230670f1b845fdbf007fac1ff9caSHA1: 09cee6add03d57f94ef2394547b44b9db43cb8b1ANALYSIS DATE: 2022-12-01T16:30:15ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – djvu – e4ac9588fd75fe70172873b5ca0ab847
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: e4ac9588fd75fe70172873b5ca0ab847SHA1: ba249917c721ed68b568a359a2d54f176fd943beANALYSIS DATE: 2022-12-01T15:51:04ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – globeimposter – 190517d80c4edcef8a6c2b0a017941b0
Score: 10 MALWARE FAMILY: globeimposterTAGS:family:globeimposter, persistence, ransomwareMD5: 190517d80c4edcef8a6c2b0a017941b0SHA1: 2e03f910b3f9183657c3ec00735aa5b1f03080bbANALYSIS DATE: 2022-12-01T17:06:07ZTTPS: T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
