Cobalt Stike Beacon Detected – 43[.]249[.]9[.]15:7788
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 121[.]196[.]165[.]107:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Royal Ransomware Victim: Atlatec SA de CV
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – djvu – 6b363376a842d4622aab168749b56e06
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 6b363376a842d4622aab168749b56e06SHA1: c060a576e0aa41d8854846438c9d4d15b2ebd201ANALYSIS DATE: 2022-12-25T15:05:51ZTTPS: T1082, T1053, T1130, T1112, T1060, T1222 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – fc83c3d6765a19bad4b98d25d999bbac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: fc83c3d6765a19bad4b98d25d999bbacSHA1: 4e46236df5816bcbbcc22da5cd3fdd0302aab228ANALYSIS DATE: 2022-12-25T17:00:05ZTTPS: T1012, T1222, T1005, T1081, T1082, T1053,...
Malware Analysis – amadey – 129a8da914ebc1e3b73dd61a51f39129
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 129a8da914ebc1e3b73dd61a51f39129SHA1: 71fb39b940654f3c988c0fad929074315921387dANALYSIS...
Malware Analysis – smokeloader – 1947b12fce9748b5283230f1c10c4761
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 1947b12fce9748b5283230f1c10c4761SHA1: 10924809069e4abcf3930bd8aad1437a1a1817f7ANALYSIS DATE: 2022-12-25T15:08:39ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 0fc689590ea1401800c2bf2e9dba05b8
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0fc689590ea1401800c2bf2e9dba05b8SHA1: f39bdeb0b532161f7a3c427a0c2dca1c57f234a1ANALYSIS DATE: 2022-12-25T16:06:17ZTTPS: T1222,...
Malware Analysis – smokeloader – 3621b7eb0ed318b4e3a4aa5e329dbd21
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3621b7eb0ed318b4e3a4aa5e329dbd21SHA1: 86f9061fd47f7df0b20d74b209d6c7f870117f93ANALYSIS DATE: 2022-12-25T17:04:18ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 210833411dfb3d09154f4e18ae7b61ed
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 210833411dfb3d09154f4e18ae7b61edSHA1: bf6f34517db7a00446b2258b22bf8adf986493a0ANALYSIS DATE: 2022-12-25T17:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – c3fadd562016e4a7c25fbbf4f47f27b4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: c3fadd562016e4a7c25fbbf4f47f27b4SHA1: 563dd3f0192c941c6c8069dfdca84fc0cb6fe133ANALYSIS DATE: 2022-12-25T17:01:08ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – 1a15aa18ae8129dfcfe983f75b2b1b17
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:eternity, family:redline, botnet:trud, botnet:upppppp555555, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 1a15aa18ae8129dfcfe983f75b2b1b17SHA1: 7debeced715b48e2de1d9905b56b84bc2148b5c4ANALYSIS...
Malware Analysis – djvu – 7b96061b71c234da6fdb208fbab96b83
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 7b96061b71c234da6fdb208fbab96b83SHA1: bd6a7d267b183da41e2983ebf2dae768775b43dfANALYSIS DATE: 2022-12-25T17:48:22ZTTPS: T1060, T1112, T1222, T1082, T1005, T1081,...
Malware Analysis – amadey – 033f1c8d781800f686ef0666280c1bae
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:redline, botnet:trud, botnet:upppppp555555, collection, discovery, infostealer, persistence, spyware, stealer, trojanMD5: 033f1c8d781800f686ef0666280c1baeSHA1: fe5495be3a1464eb5cbd78b5193c2a45d49beb28ANALYSIS DATE: 2022-12-25T17:33:03ZTTPS: T1082,...
Malware Analysis – amadey – 999d8ae721958772b0b61d72b3ea20b9
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, botnet:rocketssss, botnet:upppppp555555, backdoor, brand:microsoft, collection, discovery, infostealer, persistence, phishing, ransomware, rat,...
Malware Analysis – djvu – fb9d2488001ea8c7ea768c22cea0c865
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: fb9d2488001ea8c7ea768c22cea0c865SHA1: 01b09dc4646464ad6eb50d9c567492bc97613bb9ANALYSIS DATE: 2022-12-25T17:12:28ZTTPS: T1005, T1081, T1012, T1082, T1060, T1112,...
BreachForums Database Leak Alert: Trackitt
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
BreachForums Database Leak Alert: LucasForums
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
BreachForums Database Leak Alert: Jeep Enthusiast Forums
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
BreachForums Database Leak Alert: Deezer
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
BreachForums Database Leak Alert: BEUTiFi
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Massive Twitter data leak investigated by EU privacy watchdog
Source: DALL-E The Irish Data Protection Commission (DPC) has launched an inquiry following last month's news reports of a massive Twitter...
The Week in Ransomware – December 23rd 2022 – Targeting Microsoft Exchange
Reports this week illustrate how threat actors consider Microsoft Exchange as a prime target for gaining initial access to corporate...
New info-stealer malware infects software pirates via fake cracks sites
A new information-stealing malware named ‘RisePro’ is being distributed through fake cracks sites operated by the PrivateLoader pay-per-install (PPI) malware...
