Microsoft revised CVE-2022-37958 severity due to its broader scope
Microsoft revised the severity rate for the CVE-2022-37958 flaw which was addressed with Patch Tuesday security updates for September 2022....
OSINT
Malware Analysis – danabot – cebcff470e19eb9de81af95cfe2b86bc
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – ransomware – d7986651c677f683616da3ae1b4d1ff7
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d7986651c677f683616da3ae1b4d1ff7SHA1: a1b03ce87f537131a031a2618e02d13e29dd760aANALYSIS DATE: 2022-12-16T05:29:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – persistence – ff77c452d18d840f60f3b9007fbe5379
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: ff77c452d18d840f60f3b9007fbe5379SHA1: 2e52628c8e985b5b08f04fdc99e44c937ee1b59fANALYSIS DATE: 2022-12-16T03:47:07ZTTPS: T1012, T1120, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – djvu – 6824a72ba14def6475ee1937ec2d7594
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6824a72ba14def6475ee1937ec2d7594SHA1: 33112b56093f382724359c112518bac080e504fcANALYSIS DATE: 2022-12-16T04:43:33ZTTPS: T1005, T1081, T1012, T1082, T1060, T1112,...
Malware Analysis – djvu – 1fbdb1063b832e6529118d4ab7e66971
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Cobalt Stike Beacon Detected – 167[.]71[.]43[.]105:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]135[.]249[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]70[.]213[.]54:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 143[.]198[.]173[.]163:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]3[.]56:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Royal Ransomware Victim: Leo Hamel Fine Jewelers
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – danabot – 48b9fa0cc39ab3ee91aa4ed8c8ef61bb
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...
Malware Analysis – djvu – 266e3e83a172ee31f8301c1516424542
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 266e3e83a172ee31f8301c1516424542SHA1: 2713be6a03de737f57127c8b3bb9504295751e15ANALYSIS DATE: 2022-12-15T22:40:49ZTTPS: T1053, T1005, T1081, T1012, T1082, T1060,...
Malware Analysis – danabot – 5c318b3592274eb5be64adf089c092ae
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – danabot – 9c06b180481364e6ca02d9fad0ef9638
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...
Malware Analysis – ransomware – b2941a554d6db6eeeeceab24fae5e961
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: b2941a554d6db6eeeeceab24fae5e961SHA1: 52bc6d9c3a612fc31e57aac69b6d927d232d66d3ANALYSIS DATE: 2022-12-15T22:47:50ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Ransomware Business Models: Future Pivots and Trends
Ransomware groups and their business models are expected to change from what and how we know it to date. In...
Trend Joining App Defense Alliance Announced by Google
Trend Micro’s participation in Google’s App Defense Alliance will ensure the security of customers by preventing malicious apps from being...
Managing Cyber Risk in 2023: The People Element
Explore the latest findings from Trend Micro’s Cyber Risk Index (1H’2022) and discover how to enhance cybersecurity risk management across...
CISA: CISA Releases Forty-One Industrial Control Systems Advisories
CISA Releases Forty-One Industrial Control Systems Advisories CISA has released forty-one (41) Industrial Control Systems (ICS) advisories on 15 December...
Chinese MirrorFace APT group targets Japanese political entities
A Chinese-speaking APT group, tracked as MirrorFace, is behind a spear-phishing campaign targeting Japanese political entities. ESET researchers recently discovered a...
Royal Ransomware Victim: Vincent Fister
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
CISA: Drupal Releases Security Updates to Address Vulnerabilities in H5P and File (Field) Paths
Drupal Releases Security Updates to Address Vulnerabilities in H5P and File (Field) Paths Drupal has released security updates to address...
