LockBit 3.0 Ransomware Victim: laremo[.]de
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
OSINT
Cobalt Stike Beacon Detected – 45[.]9[.]74[.]66:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]145[.]23[.]11:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]220[.]49[.]47:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]23[.]88:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]12[.]218[.]174:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]187[.]242:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]89[.]195[.]215:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]240[.]118[.]212:84
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]233[.]56[.]4:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]181[.]159[.]33:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]75[.]45:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]224[.]42[.]12:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Fortinet Issues Patches for 40 Flaws Affecting FortiWeb, FortiOS, FortiOS, and FortiProxy
Fortinet has released security updates to address 40 vulnerabilities in its software lineup, including FortiWeb, FortiOS, FortiNAS, and FortiProxy, among...
Daily Vulnerability Trends: Sun Feb 19 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-47986IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a...
Malware Analysis – djvu – 80578882fdc407820d3ba7221d70a88f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 80578882fdc407820d3ba7221d70a88fSHA1: fa5b65b913365b5e3364627b8e5ffc623ed7d665ANALYSIS DATE: 2023-02-19T04:21:50ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – f06e766835d11056a74444cfba25c5ee
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: f06e766835d11056a74444cfba25c5eeSHA1:...
Malware Analysis – djvu – 4d3ae0bbcf5953b1dd4ccc5f202132f3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 4d3ae0bbcf5953b1dd4ccc5f202132f3SHA1: 33ad4091cdcf63cdb9c174ebd16249291a154e30ANALYSIS DATE: 2023-02-19T03:24:47ZTTPS: T1222, T1012, T1082, T1053,...
Malware Analysis – evasion – fbed0748c6ea745024516ae3ef887279
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: fbed0748c6ea745024516ae3ef887279SHA1: 2d9d50f0cb9e4f29e770b8c472286366e8051e9fANALYSIS DATE: 2023-02-19T04:51:02ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – gandcrab – 7f97b34a113170d02ff8008c2bbc7745
Score: 10 MALWARE FAMILY: gandcrabTAGS:family:gandcrab, backdoor, persistence, ransomwareMD5: 7f97b34a113170d02ff8008c2bbc7745SHA1: fe00b8cfc0896d6d23ff3628af8c406a7683d707ANALYSIS DATE: 2023-02-19T04:44:04ZTTPS: T1012, T1082, T1060, T1112, T1120 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 0ae455cfb95cbbe6037335cb088a4a0e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 0ae455cfb95cbbe6037335cb088a4a0eSHA1:...
Malware Analysis – chaos – f530883103009766083537a3bac26dfb
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, spyware, stealerMD5: f530883103009766083537a3bac26dfbSHA1: d2deb888522b6391cddf370a452d245005c52e77ANALYSIS DATE: 2023-02-19T04:44:06ZTTPS: T1005, T1081, T1082, T1491, T1112 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – ebd732413ad94faef28ac9ad9bee62dc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ebd732413ad94faef28ac9ad9bee62dcSHA1: 5a7276c719834cca12c210f7efa00a8c8c09d1bdANALYSIS DATE: 2023-02-19T05:20:58ZTTPS: T1082, T1053, T1005, T1081,...
Malware Analysis – ransomware – a7219bd2b24f0684c2506dd03b979d92
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealer, upxMD5: a7219bd2b24f0684c2506dd03b979d92SHA1: 8b5029806c496ffceae3ac12251592e0b652edf2ANALYSIS DATE: 2023-02-19T05:14:19ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
