OSINT

Octopii – An AI-powered Personal Identifiable Information (PII) Scanner

November 24, 2022

Octopii is an open-source AI-powered Personal Identifiable Information (PII) scanner that can look for image assets such as Government IDs,...

Malware Analysis – evasion – 253491ad824e156971c957cd15254844

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 253491ad824e156971c957cd15254844SHA1: d47161e939cc823a331fff50859b915c3f876342ANALYSIS DATE: 2022-11-24T06:14:54ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – persistence – 8e1bdc1c484bc03880c67424d80e351d

November 24, 2022

Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8e1bdc1c484bc03880c67424d80e351dSHA1: 122a845fa053dcbc16a7148313f27525619a1818ANALYSIS DATE: 2022-11-24T06:14:03ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was...

Malware Analysis – collection – d4e6d50ab01a9b3762049dca22a02abf

November 24, 2022

Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: d4e6d50ab01a9b3762049dca22a02abfSHA1: ca3f10184c809c35fa4b32e144e0cbd11f20e436ANALYSIS DATE: 2022-11-24T06:04:04ZTTPS: T1114, T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known...

Malware Analysis – evasion – e93ea59e4358bddffe1536ffa914ba54

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: e93ea59e4358bddffe1536ffa914ba54SHA1: f6373f75940a88c005d3bc45676c7d803109dd20ANALYSIS DATE: 2022-11-24T06:46:13ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – be98338e8170418b624915328377710e

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: be98338e8170418b624915328377710eSHA1: bd772bbbec24866fbb45dc59f7ef961f926cf3fbANALYSIS DATE: 2022-11-24T06:15:03ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – collection – bedcf9aeacffdf4e975cb6bb253ed2f9

November 24, 2022

Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: bedcf9aeacffdf4e975cb6bb253ed2f9SHA1: b976f8d7b2a0a4d7bef4e3f4b125938f6d2de60cANALYSIS DATE: 2022-11-24T06:56:13ZTTPS: T1082, T1060, T1112, T1107, T1490, T1114 ScoreMeaningExample10Known...

Malware Analysis – infostealer – e0bfb1bfbcee3542a77e4e9a0a47d1c4

November 24, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: e0bfb1bfbcee3542a77e4e9a0a47d1c4SHA1: 22302b16c65f318176c7095aaf166bada1716358ANALYSIS DATE: 2022-11-24T06:21:30ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Cobalt Stike Beacon Detected – 39[.]104[.]165[.]139:443

November 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – collection – b273ceaf433d040208ffb0d80001dfd9

November 24, 2022

Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: b273ceaf433d040208ffb0d80001dfd9SHA1: 4247e667c9cf949b55040eeff63d678310c9e375ANALYSIS DATE: 2022-11-24T07:42:42ZTTPS: T1107, T1490, T1114, T1082, T1060, T1112 ScoreMeaningExample10Known...

Malware Analysis – evasion – dcd6e52f2caeafa113f1c60001869b77

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: dcd6e52f2caeafa113f1c60001869b77SHA1: a79961c2b141b7b428a77f920c3840d7414e76ceANALYSIS DATE: 2022-11-24T07:27:43ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 1325ea7384a4653a3a337381cfe180fa

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 1325ea7384a4653a3a337381cfe180faSHA1: eb2eae4cc2a5c7356b4e00c0f3d44788c4ae27e0ANALYSIS DATE: 2022-11-24T07:25:59ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – bc1cf7a80a21356b81bbf41d153a5d0f

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: bc1cf7a80a21356b81bbf41d153a5d0fSHA1: bf24d533d95fc1f2397bf3aae638b10de5ffd513ANALYSIS DATE: 2022-11-24T07:25:34ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...

Cobalt Stike Beacon Detected – 124[.]222[.]95[.]72:8443

November 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 148[.]70[.]167[.]199:9443

November 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 185[.]239[.]70[.]229:443

November 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 5[.]61[.]36[.]132:80

November 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – ransomware – e2e275413ad1246b9ac9de9d175f5103

November 24, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e2e275413ad1246b9ac9de9d175f5103SHA1: dac9e13cf3289c7870da32a94e76e7bef34b945dANALYSIS DATE: 2022-11-24T08:08:31ZTTPS: T1018, T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – evasion – e46421290522060e95dc6c6ac9bab9c8

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: e46421290522060e95dc6c6ac9bab9c8SHA1: 08aaa1203dca088e366ea31253ec264ca710f015ANALYSIS DATE: 2022-11-24T07:48:05ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – b0710804b8d1057855fdefcfa0112e66

November 24, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: b0710804b8d1057855fdefcfa0112e66SHA1: 78db1b4541e821fb43d147e7809607733180b3ceANALYSIS DATE: 2022-11-24T07:48:10ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – persistence – b725067c7926e8a3268d2fabfcad7b4e

November 24, 2022

Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: b725067c7926e8a3268d2fabfcad7b4eSHA1: 2518fb688bec920f49e6b20144dc385866a2a70cANALYSIS DATE: 2022-11-24T07:48:23ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

OSINT

Octopii – An AI-powered Personal Identifiable Information (PII) Scanner

Malware Analysis – evasion – 253491ad824e156971c957cd15254844

Malware Analysis – persistence – 8e1bdc1c484bc03880c67424d80e351d

Malware Analysis – collection – d4e6d50ab01a9b3762049dca22a02abf

Malware Analysis – evasion – e93ea59e4358bddffe1536ffa914ba54

Malware Analysis – evasion – be98338e8170418b624915328377710e

Malware Analysis – collection – bedcf9aeacffdf4e975cb6bb253ed2f9

Malware Analysis – infostealer – e0bfb1bfbcee3542a77e4e9a0a47d1c4

Cobalt Stike Beacon Detected – 39[.]104[.]165[.]139:443

Malware Analysis – collection – b273ceaf433d040208ffb0d80001dfd9

Malware Analysis – evasion – dcd6e52f2caeafa113f1c60001869b77

Malware Analysis – evasion – 1325ea7384a4653a3a337381cfe180fa

Malware Analysis – evasion – bc1cf7a80a21356b81bbf41d153a5d0f

Cobalt Stike Beacon Detected – 124[.]222[.]95[.]72:8443

Cobalt Stike Beacon Detected – 148[.]70[.]167[.]199:9443

Cobalt Stike Beacon Detected – 185[.]239[.]70[.]229:443

Cobalt Stike Beacon Detected – 5[.]61[.]36[.]132:80

Malware Analysis – ransomware – e2e275413ad1246b9ac9de9d175f5103

Malware Analysis – evasion – e46421290522060e95dc6c6ac9bab9c8

Malware Analysis – evasion – b0710804b8d1057855fdefcfa0112e66

Malware Analysis – persistence – b725067c7926e8a3268d2fabfcad7b4e

Cobalt Stike Beacon Detected – 110[.]40[.]201[.]49:443

Cobalt Stike Beacon Detected – 43[.]139[.]156[.]186:443

Cobalt Stike Beacon Detected – 172[.]86[.]123[.]13:443

Cobalt Strike Beacon Detected – 49[.]233[.]32[.]31:9443

Cobalt Strike Beacon Detected – 103[.]171[.]35[.]26:9443

Cobalt Strike Beacon Detected – 45[.]141[.]233[.]66:8080

Cobalt Strike Beacon Detected – 8[.]216[.]80[.]229:9443

Cobalt Strike Beacon Detected – 193[.]112[.]83[.]36:8080

You may have missed