OSINT

BreachForums Database Leak Alert: Avito[.]ma

December 17, 2022

BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

Read More

abstract-malware-990x400-1

Malware Analysis – danabot – 2141c84aab4a7591fb50e4fd24a9c2a7

December 17, 2022

Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 33db41f0457efcefc1bb8a720c36cf58

December 17, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 33db41f0457efcefc1bb8a720c36cf58SHA1: 59f2568b418dfdd066a8a8236d8efb568d02a750ANALYSIS DATE: 2022-12-17T04:30:07ZTTPS: T1082, T1053, T1012, T1005, T1081, T1222,...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 113[.]31[.]126[.]45:8099

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 101[.]43[.]108[.]171:8080

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 121[.]199[.]0[.]54:8080

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 77[.]73[.]134[.]23:8443

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 192[.]3[.]231[.]208:8080

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 77[.]73[.]134[.]23:443

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 85[.]209[.]135[.]73:443

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 195[.]133[.]53[.]186:8080

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 43[.]156[.]25[.]232:6666

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

abstract-malware-990x400-1

Malware Analysis – ransomware – 03c214ed5ed9cf06d1268c7ea3d5c5e0

December 17, 2022

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 03c214ed5ed9cf06d1268c7ea3d5c5e0SHA1: 3d9a14b6868dc6310d404f359125cf9da58014baANALYSIS DATE: 2022-12-16T21:58:12ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Read More

abstract-malware-990x400-1

Malware Analysis – smokeloader – 9475023f1f830aa890cf33c8700a3380

December 17, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9475023f1f830aa890cf33c8700a3380SHA1: f103c70f1ead0c9fe7a169c58131db7cdcf49f5fANALYSIS DATE: 2022-12-16T21:22:49ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Read More

abstract-malware-990x400-1

Malware Analysis – danabot – 25e1c36abd30bb9789820a87925ed873

December 17, 2022

Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 5a5f6c2dcab8f664963408d20b0880d1

December 17, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 5a5f6c2dcab8f664963408d20b0880d1SHA1: 1cd46f1cf7464f06ab6b54a685d95060fe8a75ebANALYSIS DATE: 2022-12-16T22:10:51ZTTPS: T1060, T1112, T1222, T1082, T1005, T1081,...

Read More

osint

Agenda Ransomware Uses Rust to Target More Vital Industries

December 16, 2022

This year, various ransomware-as-a-service groups have developed versions of their ransomware in Rust, including Agenda. Agenda's Rust variant has targeted...

Read More

osint

Former Twitter employee sentenced to 3.5 years in jail for spying on behalf of Saudi Arabia

December 16, 2022

An ex Twitter employee has been sentenced to three-and-a-half years in prison for spying on individuals on behalf of Saudi...

Read More

osint

Social Blade discloses security breach

December 16, 2022

Social media analytics service Social Blade disclosed a security breach after a database containing allegedly stolen data from the company...

Read More

Karakurt Ransomware Victim: TLC

December 16, 2022

KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 825450439c2aff52b4cb39ea80ac2a3b

December 16, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 825450439c2aff52b4cb39ea80ac2a3bSHA1: b5080c44dc3c14bca0adcc5e27137566647d99c7ANALYSIS DATE:...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 11373938ba00f6f0d8d9721934deb0d7

December 16, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 11373938ba00f6f0d8d9721934deb0d7SHA1: 52bd55a7af0dd44fe4681569c52f761a6b7d7a25ANALYSIS DATE: 2022-12-16T15:04:05ZTTPS: T1222, T1082, T1053, T1005, T1081, T1012,...

Read More

abstract-malware-990x400-1

Malware Analysis – ransomware – e39addea75acbce3c043a5928ff3abae

December 16, 2022

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e39addea75acbce3c043a5928ff3abaeSHA1: 498d7ff507388dd14a573e67d710d3fdbdd16327ANALYSIS DATE: 2022-12-16T16:00:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Read More

abstract-malware-990x400-1

Malware Analysis – evasion – 690e39cbffe340fcbf4db885c7f9ebfa

December 16, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 690e39cbffe340fcbf4db885c7f9ebfaSHA1: 6ff465439c7a54784c7df692ce495843cb12f750ANALYSIS DATE: 2022-12-16T15:44:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 121[.]43[.]37[.]134:4434

September 12, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 119[.]29[.]231[.]118:443

September 12, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 39[.]101[.]74[.]162:443

September 12, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 8[.]218[.]112[.]112:8880

September 12, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]109[.]48[.]57:443

September 12, 2025