Cobalt Stike Beacon Detected – 119[.]29[.]187[.]225:8084
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 45[.]61[.]186[.]18:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 164[.]90[.]184[.]80:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]40[.]133[.]193:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – fe10cd5cf0833d15d53c84b956561bdc
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: fe10cd5cf0833d15d53c84b956561bdcSHA1: 74221c41dbf8a41bea500be933fec7daf834517fANALYSIS DATE: 2023-03-06T21:14:49ZTTPS: T1158, T1082, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Cobalt Stike Beacon Detected – 120[.]79[.]64[.]164:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]14[.]144[.]30:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]3[.]176[.]226:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 163[.]123[.]142[.]213:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]112[.]151[.]108:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 35b17795f1f3dc06ca329522fd6ef9da
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 35b17795f1f3dc06ca329522fd6ef9daSHA1: 0be3c5dddb404e85f448996b4c91b06c1253e796ANALYSIS DATE: 2023-03-06T21:41:04ZTTPS: T1130, T1112, T1222, T1060, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – f6e0c1108047ed4e6afb828840ad9341
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: f6e0c1108047ed4e6afb828840ad9341SHA1: b46cc39f9c6cdc803ef24d840772e296b4d2edd5ANALYSIS DATE: 2023-03-06T22:58:11ZTTPS: T1222, T1060, T1112, T1082, T1012, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 854439726bdbc1f245bc97da0cc21bac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 854439726bdbc1f245bc97da0cc21bacSHA1: e6d7aad11cbabb495852c24b7c856efd5636c0edANALYSIS DATE: 2023-03-06T23:30:47ZTTPS: T1053, T1060, T1112, T1222, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – persistence – edc87da8654e966bee0e5c9b92ed67cb
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: edc87da8654e966bee0e5c9b92ed67cbSHA1: db99fc79a64873bef25998681392ac9be2c1c99cANALYSIS DATE: 2023-03-06T22:19:44ZTTPS: T1012, T1120, T1082, T1005, T1081, T1060, T1112 ScoreMeaningExample10Known...
From Disinformation to Deep Fakes: How Threat Actors Manipulate Reality
Deep fakes are expected to become a more prominent attack vector. Here's how to identify them. What are Deep Fakes?#...
New HiatusRAT Malware Targets Business-Grade Routers to Covertly Spy on Victims
A never-before-seen complex malware is targeting business-grade routers to covertly spy on victims in Latin America, Europe, and North America...
Core Members of DoppelPaymer Ransomware Gang Targeted in Germany and Ukraine
Law enforcement authorities from Germany and Ukraine have targeted suspected core members of a cybercrime group that has been behind...
Experts Reveal Google Cloud Platform’s Blind Spot for Data Exfiltration Attacks
Malicious actors can take advantage of "insufficient" forensic visibility into Google Cloud Platform (GCP) to exfiltrate sensitive data, a new...
Malware Analysis – evasion – 127dbfae87e3fcddb3158aed346d9979
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 127dbfae87e3fcddb3158aed346d9979SHA1: 87099d99ccfc0fb48a3cab452699363aa367f33eANALYSIS DATE: 2023-03-06T15:10:24ZTTPS: T1082, T1107, T1490, T1031, T1562, T1489, T1112, T1012, T1120 ScoreMeaningExample10Known...
Malware Analysis – djvu – d15aa4629d3b09649950800f1feac006
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d15aa4629d3b09649950800f1feac006SHA1: d1b55badb3fea5610c6df1868b4bb9dc7993c43cANALYSIS DATE: 2023-03-06T15:20:21ZTTPS: T1222, T1053, T1005, T1081, T1060,...
Malware Analysis – djvu – d8d9cfccfa1e2f6feb68d183b2a2f998
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d8d9cfccfa1e2f6feb68d183b2a2f998SHA1: f8b807612370472072abbb431ed3b6635ced550cANALYSIS DATE: 2023-03-06T15:24:14ZTTPS: T1053, T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 5dca85fa8eeaa78684c44f2ac6ed1ffe
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 5dca85fa8eeaa78684c44f2ac6ed1ffeSHA1: 6442ca8b9cc2ce95ad751f8bf83a437971f79206ANALYSIS DATE: 2023-03-06T16:30:47ZTTPS: T1222, T1082, T1012, T1053, T1060, T1112 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 779d02b6351b71524e5e7885ad45e1d5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 779d02b6351b71524e5e7885ad45e1d5SHA1: 6cc10ade88aece038f171cbb4e625cde0280e9e8ANALYSIS DATE: 2023-03-06T16:48:07ZTTPS: T1012, T1082, T1053, T1222, T1060, T1112 ScoreMeaningExample10Known badA...
Malware Analysis – discovery – 11c78968828ba10049e667a06c8d5445
Score: 7 MALWARE FAMILY: discoveryTAGS:discoveryMD5: 11c78968828ba10049e667a06c8d5445SHA1: 34a1a82fcde2beda84e6845f6a10355138209fc1ANALYSIS DATE: 2023-03-06T16:44:18ZTTPS: T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
