OSINT

Malware Analysis – smokeloader – 036f9407ef3f17bca4e0e9f815abdbf5

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 036f9407ef3f17bca4e0e9f815abdbf5SHA1: e0a3dd78d675cfda0d5c7bcb21ca0d1b82d7db55ANALYSIS DATE: 2023-05-01T15:40:30ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 708877b85f81dc9829698558989b6f3f

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 708877b85f81dc9829698558989b6f3fSHA1: fc75dcb59a71505e086bd900a0acb3041a5c1a60ANALYSIS DATE: 2023-05-01T15:39:17ZTTPS: T1060, T1112, T1222, T1082, T1053, T1130 ScoreMeaningExample10Known badA...

Malware Analysis – djvu – 7199bce083f5362ac8b5d5676e823fc6

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: 7199bce083f5362ac8b5d5676e823fc6SHA1: ba7ec51abd51efbefecbb6908ae07c19afa0e53fANALYSIS DATE: 2023-05-01T15:44:26ZTTPS: T1060, T1112, T1222, T1082, T1130,...

Malware Analysis – smokeloader – c3de2bee9d934526001ac3ed817b2e3c

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c3de2bee9d934526001ac3ed817b2e3cSHA1: 0abff21d42f7033f8cd9bbcb4a70ebe756cfdc1eANALYSIS DATE: 2023-05-01T15:45:22ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – e52e8f7e2524b9606fa8afefddcfa78a

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: e52e8f7e2524b9606fa8afefddcfa78aSHA1: 03a537274f88f917422a2cdf1f07f10fcdbbaff9ANALYSIS DATE: 2023-05-01T15:42:45ZTTPS: T1053, T1060, T1112, T1222, T1082,...

Malware Analysis – smokeloader – d36ccecb23e19ad530e3944d2e74a112

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d36ccecb23e19ad530e3944d2e74a112SHA1: bc23ecf37f5732eceb6afc61412f3c604209bccaANALYSIS DATE: 2023-05-01T15:43:19ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 3cb28e804cc2dab7c94f96bd7a95d45f

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3cb28e804cc2dab7c94f96bd7a95d45fSHA1: e5303d9431ba2bbc2d2cb07ab5253a6fb0a1aa89ANALYSIS DATE: 2023-05-01T15:47:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 0d54474c200d1ecddc41c0a860ca8d88

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0d54474c200d1ecddc41c0a860ca8d88SHA1: ed8280821fe7cecd68301f36bf4f26058443c8f7ANALYSIS DATE: 2023-05-01T15:47:25ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – e5d12f8dc817f4da69cc34aaf47023a1

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: e5d12f8dc817f4da69cc34aaf47023a1SHA1: 82bd2ac0d706643b8be62142e6bb7c0082fff635ANALYSIS DATE: 2023-05-01T15:46:10ZTTPS: T1222, T1130, T1112, T1060, T1082,...

Malware Analysis – smokeloader – a49d680bedab3de4a399797626b8fe33

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a49d680bedab3de4a399797626b8fe33SHA1: b1031e232efa0715968c4c4ff2d244906e38cf4bANALYSIS DATE: 2023-05-01T15:48:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 2679dd3ef68ab6c395840715af1dda17

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2679dd3ef68ab6c395840715af1dda17SHA1: d59f6b7fad296ecc1a5dc2b848141347d491c532ANALYSIS DATE: 2023-05-01T15:50:07ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 3048d1e5baa400d6e1aee39ce99b098b

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 3048d1e5baa400d6e1aee39ce99b098bSHA1: 1f2c64876cd351e5bc7d6da2db8daf7dae88ea0aANALYSIS DATE: 2023-05-01T15:54:31ZTTPS: T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – djvu – 5af5f4ff15470980027b6b5beb9c49b1

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 5af5f4ff15470980027b6b5beb9c49b1SHA1: a6c066d0646b330042deb929b1aa4e28bffb7f5eANALYSIS DATE: 2023-05-01T15:50:29ZTTPS: T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – smokeloader – 385760657f7547791531585106ad0432

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 385760657f7547791531585106ad0432SHA1: 265d1f0c4ac7e2a0c88d913ccb6e3a4ff30c76f8ANALYSIS DATE: 2023-05-01T15:55:35ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 8be4ba30ab79c3c53e17033864d175e2

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8be4ba30ab79c3c53e17033864d175e2SHA1: ce3f27df008bc62b959bc07625114369bb4bb0feANALYSIS DATE: 2023-05-01T16:08:55ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – af8344a5661e5bca1525164bbcfcc316

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: af8344a5661e5bca1525164bbcfcc316SHA1: 3907b25dab78167d0aea39e89e39b7df79530835ANALYSIS DATE: 2023-05-01T16:08:22ZTTPS: T1060, T1112, T1222, T1082, T1130,...

Malware Analysis – smokeloader – 66fe0d6e3fd740e3f38fb54b07ad2ddb

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 66fe0d6e3fd740e3f38fb54b07ad2ddbSHA1: 8f438467cb7b9f4c89f698434f07b4b2242377aeANALYSIS DATE: 2023-05-01T16:06:55ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – troldesh – 6f4a3bce5a21f15c57b1fb175048a374

May 1, 2023

Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, discovery, persistence, ransomware, trojan, upxMD5: 6f4a3bce5a21f15c57b1fb175048a374SHA1: 0c6fbba46356f5ed4a11b593fafd6cb89ee95038ANALYSIS DATE: 2023-05-01T16:08:01ZTTPS: T1012, T1060, T1112, T1082 ScoreMeaningExample10Known badA...

Malware Analysis – djvu – 329cb2da266501b7c09a7b31d35ec024

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, stealerMD5: 329cb2da266501b7c09a7b31d35ec024SHA1: 70f7a247b954a3714fb3f8bba9095247eeee25ebANALYSIS DATE: 2023-05-01T16:14:14ZTTPS: T1130, T1112, T1060, T1222, T1082,...

Malware Analysis – djvu – 393f6d66fc64392251ad70fbe4472b35

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, stealerMD5: 393f6d66fc64392251ad70fbe4472b35SHA1: dd94436d3b6749cf1dee62a8fc9bad36ac6127b7ANALYSIS DATE: 2023-05-01T16:10:34ZTTPS: T1053, T1130, T1112, T1060, T1222,...

Malware Analysis – smokeloader – 18d7ce6bec819881fc82e742aaca770a

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 18d7ce6bec819881fc82e742aaca770aSHA1: 986c0bc60b9470f4b8acd8a8a11e21800f956f17ANALYSIS DATE: 2023-05-01T16:12:44ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – e210d4b9b543ffbb9e663ed404109625

May 1, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: e210d4b9b543ffbb9e663ed404109625SHA1: f9c674001e83ba5e0ac5bbdf7b41e3f85dc67b53ANALYSIS DATE: 2023-05-01T16:13:59ZTTPS: T1130, T1112, T1060, T1222,...

Malware Analysis – smokeloader – a7e54293629d6264bb9d563c88b3cf59

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a7e54293629d6264bb9d563c88b3cf59SHA1: 092f6901438b26a4d635854027257277d1e4c42dANALYSIS DATE: 2023-05-01T16:17:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 6f376d25fc8b446e9f386e7c4cef2078

May 1, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6f376d25fc8b446e9f386e7c4cef2078SHA1: 5ae8e23e17ef0c547449183dc1132af59d58f0bfANALYSIS DATE: 2023-05-01T16:16:46ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

OSINT

Malware Analysis – smokeloader – 036f9407ef3f17bca4e0e9f815abdbf5

Malware Analysis – djvu – 708877b85f81dc9829698558989b6f3f

Malware Analysis – djvu – 7199bce083f5362ac8b5d5676e823fc6

Malware Analysis – smokeloader – c3de2bee9d934526001ac3ed817b2e3c

Malware Analysis – djvu – e52e8f7e2524b9606fa8afefddcfa78a

Malware Analysis – smokeloader – d36ccecb23e19ad530e3944d2e74a112

Malware Analysis – smokeloader – 3cb28e804cc2dab7c94f96bd7a95d45f

Malware Analysis – smokeloader – 0d54474c200d1ecddc41c0a860ca8d88

Malware Analysis – djvu – e5d12f8dc817f4da69cc34aaf47023a1

Malware Analysis – smokeloader – a49d680bedab3de4a399797626b8fe33

Malware Analysis – smokeloader – 2679dd3ef68ab6c395840715af1dda17

Malware Analysis – djvu – 3048d1e5baa400d6e1aee39ce99b098b

Malware Analysis – djvu – 5af5f4ff15470980027b6b5beb9c49b1

Malware Analysis – smokeloader – 385760657f7547791531585106ad0432

Malware Analysis – smokeloader – 8be4ba30ab79c3c53e17033864d175e2

Malware Analysis – djvu – af8344a5661e5bca1525164bbcfcc316

Malware Analysis – smokeloader – 66fe0d6e3fd740e3f38fb54b07ad2ddb

Malware Analysis – troldesh – 6f4a3bce5a21f15c57b1fb175048a374

Malware Analysis – djvu – 329cb2da266501b7c09a7b31d35ec024

Malware Analysis – djvu – 393f6d66fc64392251ad70fbe4472b35

Malware Analysis – smokeloader – 18d7ce6bec819881fc82e742aaca770a

Malware Analysis – djvu – e210d4b9b543ffbb9e663ed404109625

Malware Analysis – smokeloader – a7e54293629d6264bb9d563c88b3cf59

Malware Analysis – smokeloader – 6f376d25fc8b446e9f386e7c4cef2078

[DRAGONFORCE] – Ransomware Victim: GB Mail

[AKIRA] – Ransomware Victim: Mold In Graphic Systems

[STORMOUS] – Ransomware Victim: !

CVE Alert: CVE-2025-12863 – Red Hat – Red Hat Enterprise Linux 10

Cobalt Strike Beacon Detected – 8[.]153[.]205[.]30:8080

You may have missed