Cobalt Stike Beacon Detected – 124[.]221[.]207[.]103:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 47[.]96[.]136[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – wannacry – 9f73c18d38017fdef2011b186dead35b
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 9f73c18d38017fdef2011b186dead35bSHA1: de15099805cce28f7fec1edf701e3d1f14d66f51ANALYSIS DATE: 2022-11-10T10:00:31ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – wannacry – 2246127934495b3206cb318271092a5d
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 2246127934495b3206cb318271092a5dSHA1: bb1d5148afc44635a9e103de45441c4c75db64aaANALYSIS DATE: 2022-11-10T10:40:26ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – chaos – f28dab0d7488b9d69a566c9ca7c084e1
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, persistence, ransomware, spyware, stealerMD5: f28dab0d7488b9d69a566c9ca7c084e1SHA1: 32537b66204e8c76642da46aa286433cb868b453ANALYSIS DATE: 2022-11-10T10:20:08ZTTPS: T1490, T1059, T1107, T1005, T1081, T1082,...
Malware Analysis – djvu – 068a01b46b7fd84d9d37d37b9307c514
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 068a01b46b7fd84d9d37d37b9307c514SHA1: 5b659a6d2c3c3c3e79e2dff0e0d61abe0d6e5325ANALYSIS DATE: 2022-11-10T10:53:29ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – amadey – 29edbd2942ee93a290930a8384fb0362
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:53508e7dc4e08bd33122d190a04a1200, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – ransomware – 4617028009902b4530adbfee151d3126
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 4617028009902b4530adbfee151d3126SHA1: 186828382c2d4e3be2054675614bef990972b23aANALYSIS DATE: 2022-11-10T11:00:18ZTTPS: T1059, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – wannacry – b54c96716a5453ad729d91bb5fb39bf9
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: b54c96716a5453ad729d91bb5fb39bf9SHA1: c72f2c21ef5e82132fd1c68f4e0afe6e0a94ccf6ANALYSIS DATE: 2022-11-10T11:00:32ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – blackcat – d28d12f328105aa089129301da9919d0
Score: 10 MALWARE FAMILY: blackcatTAGS:family:blackcat, discovery, evasion, ransomware, trojanMD5: d28d12f328105aa089129301da9919d0SHA1: 234f34e9725dadcf109e3c8065f1841d4c2f74e9ANALYSIS DATE: 2022-11-10T11:04:58ZTTPS: T1107, T1490, T1012, T1120, T1082, T1089, T1112,...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Posh C2 Detected – 20[.]218[.]128[.]59:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
APT29 abused the Windows Credential Roaming in an attack against a diplomatic entity
Russia-linked APT29 cyberespionage group exploited a Windows feature called Credential Roaming to target a European diplomatic entity. Mandiant researchers in...
Lenovo warns of flaws that can be used to bypass security features
Lenovo fixed two high-severity flaws impacting various laptop models that could allow an attacker to deactivate UEFI Secure Boot. Lenovo...
Daily Vulnerability Trends: Thu Nov 10 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31686VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method...
Cybersecurity threats: what awaits us in 2023?
Knowing what the future holds can help with being prepared for emerging threats better. Every year, Kaspersky experts prepare forecasts...
Malware Analysis – discovery – 05e03d4e8ba3590bb057f6e6abae5460
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 05e03d4e8ba3590bb057f6e6abae5460SHA1: e33d353a0d9c6b463859e4939b473c1eedcbd34cANALYSIS DATE: 2022-11-08T20:42:51ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – discovery – 0af95931cc8e3dffea679231b2ed42a0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 0af95931cc8e3dffea679231b2ed42a0SHA1: ba3de41f9c3cfb8eda95a0b53362444fa3c573eaANALYSIS DATE: 2022-11-08T20:54:19ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – 0acd05c82faf2a9e80d00b187cb33110
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 0acd05c82faf2a9e80d00b187cb33110SHA1: bc85782c74eff70a2c85053967ad396e976aa189ANALYSIS DATE: 2022-11-08T20:41:38ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – adware – 0755315a0567637d0b7f2c6e541a73f0
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealerMD5: 0755315a0567637d0b7f2c6e541a73f0SHA1: a14810890e5f333c24b3280e9d9d24beaf3c67cdANALYSIS DATE: 2022-11-08T21:02:06ZTTPS: T1012, T1120, T1082, T1112, T1176, T1060, T1222...
Malware Analysis – discovery – 0bfe6357cc37d49ee87637c5de9930c0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 0bfe6357cc37d49ee87637c5de9930c0SHA1: 6dc3a08ca27700a7c61a0066bf9238830c0f47afANALYSIS DATE: 2022-11-08T21:05:34ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 00dd361138be0b6242511baee2de4b80
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 00dd361138be0b6242511baee2de4b80SHA1: 5930c82038fcc415f21f5854be11832b307321bfANALYSIS DATE: 2022-11-08T20:54:38ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – adware – 0f97f8922de1baa5f8d1c0aabb754090
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealerMD5: 0f97f8922de1baa5f8d1c0aabb754090SHA1: 9453367ba3137a7f50230c92894eeb0776a64c15ANALYSIS DATE: 2022-11-08T21:02:30ZTTPS: T1112, T1176, T1060, T1222, T1012, T1120, T1082...
Malware Analysis – discovery – 0f504b17dc1ba3450baac74304d6fda1
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 0f504b17dc1ba3450baac74304d6fda1SHA1: 79f58f67f656f342792a4ede8929c2f394eb745bANALYSIS DATE: 2022-11-08T21:09:51ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
