OSINT

Malware Analysis – – f41e454bd8f94376f0fe048abfe9b593

November 26, 2022

Score: 7 MALWARE FAMILY: TAGS:MD5: f41e454bd8f94376f0fe048abfe9b593SHA1: f8ad417688ce8954e11052c681fc10db203f932dANALYSIS DATE: 2022-11-26T10:32:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – djvu – 3c30d848c6bfd14d392dc1f896bdd2bd

November 26, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 3c30d848c6bfd14d392dc1f896bdd2bdSHA1: 01652e13cacdd2a27fddb724567287a8a5f9ffe0ANALYSIS DATE: 2022-11-26T10:22:57ZTTPS:...

Malware Analysis – amadey – e9f6fccda69077cfc6d220e0f665264c

November 26, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, collection, spyware, stealer, trojanMD5: e9f6fccda69077cfc6d220e0f665264cSHA1: 87be46433353c2f746df5f84f14fd21bcd50e55bANALYSIS DATE: 2022-11-26T10:01:05ZTTPS: T1082, T1053, T1005, T1081, T1114 ScoreMeaningExample10Known badA...

Malware Analysis – djvu – 9100c922c30fa97bfd28bca79b05370f

November 26, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9100c922c30fa97bfd28bca79b05370fSHA1: 631d68e1a96c9d45d27991c6f913375cd44d44bbANALYSIS DATE: 2022-11-26T10:07:02ZTTPS: T1005, T1081, T1012, T1060,...

Cobalt Stike Beacon Detected – 1[.]12[.]55[.]126:1111

November 26, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 117[.]50[.]190[.]207:443

November 26, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 38[.]54[.]32[.]75:443

November 26, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 194[.]135[.]24[.]250:80

November 26, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Daily Vulnerability Trends: Sat Nov 26 2022

November 26, 2022

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-3602A buffer overrun can be triggered in X.509 certificate verification, specifically in...

sl-abstract-screens-big-data-resized-990x400-1

Who tracked internet users in 2021–2022

November 26, 2022

Every time you go online, someone is watching over you. The services you use, the websites you visit, the apps...

Royal Ransomware Victim: Law Firm of Friedman + Bartoumian

November 26, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Malware Analysis – infostealer – 04ed7aab42570d8fadd7c198758be716

November 26, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 04ed7aab42570d8fadd7c198758be716SHA1: 070609fcdabd223d8359458014aa247a4c0b9e53ANALYSIS DATE: 2022-11-25T19:03:18ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – infostealer – 1947bef533b3cad7c7ffa5f2351d3b2e

November 26, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 1947bef533b3cad7c7ffa5f2351d3b2eSHA1: 770e6783b100196f463d6467dbdb015b36f27c5fANALYSIS DATE: 2022-11-25T18:57:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – infostealer – 9b3ba6776b2aa31472e7894ea3b5b2b5

November 26, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 9b3ba6776b2aa31472e7894ea3b5b2b5SHA1: 578f4c9bee0f2f9f8fd4cbe3a394bc0cd26dbcb5ANALYSIS DATE: 2022-11-25T18:58:53ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – 5f01792a9084e926ffd9004d90dfa3c4

November 26, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 5f01792a9084e926ffd9004d90dfa3c4SHA1: c2f34ffd3ffe6a19bd348b5e5cb85848db3dee7bANALYSIS DATE: 2022-11-25T18:54:35ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – deba907b5cfc77a876c20a4ca16c15ab

November 26, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: deba907b5cfc77a876c20a4ca16c15abSHA1: 4ad15097ce0e20a7ca1ac1522551149b3862507bANALYSIS DATE: 2022-11-25T19:14:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 76c1070a673007b161f938eb1b48f3e0

November 26, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 76c1070a673007b161f938eb1b48f3e0SHA1: dbbacac215dc0d3f4c119674ceb4689799db2b42ANALYSIS DATE: 2022-11-25T19:17:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – evasion – 7ffc2f56be26eb249106c3456e0d88b6

November 26, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 7ffc2f56be26eb249106c3456e0d88b6SHA1: aa7d64b328d255ffc09e03493d1995396a30d0d9ANALYSIS DATE: 2022-11-25T19:11:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – e5e9b813d2029861a525e5d0c5eb5e73

November 26, 2022

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e5e9b813d2029861a525e5d0c5eb5e73SHA1: 4bfe3a9dfc8c81ecb5eb62ef52e93328e2d6bdaeANALYSIS DATE: 2022-11-25T19:05:43ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – evasion – 678bd5d6ad5a247547f59ad09bc5b86e

November 26, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 678bd5d6ad5a247547f59ad09bc5b86eSHA1: 52e94341b3a400ead9447157aaca3f61c6c1c901ANALYSIS DATE: 2022-11-25T19:41:44ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ctblocker – d9687bcc9a27bcd0f13b9582edb06f67

November 26, 2022

Score: 10 MALWARE FAMILY: ctblockerTAGS:family:ctblocker, ransomwareMD5: d9687bcc9a27bcd0f13b9582edb06f67SHA1: a74a952457d1bc2edb9d459852fe823615870f60ANALYSIS DATE: 2022-11-25T19:31:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – 1d76f25260d6dc064555786ce65fb570

November 26, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 1d76f25260d6dc064555786ce65fb570SHA1: 31cbe7487304d79629fb545266cce068b0e4d61eANALYSIS DATE: 2022-11-25T19:24:20ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 29efe40de5e0a76cecf0142310c6f968

November 26, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 29efe40de5e0a76cecf0142310c6f968SHA1: 842c446aa0b12c05483b5e9d72b9aaa6354ed2bdANALYSIS DATE: 2022-11-25T19:20:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – djvu – 23f734fab44ce50b7a9aa8313ab97377

November 26, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 23f734fab44ce50b7a9aa8313ab97377SHA1: ad1562760cec6dd7a7c1fcb2dab8422c619bfa5bANALYSIS DATE: 2022-11-26T04:04:09ZTTPS:...

OSINT

Malware Analysis – – f41e454bd8f94376f0fe048abfe9b593

Malware Analysis – djvu – 3c30d848c6bfd14d392dc1f896bdd2bd

Malware Analysis – amadey – e9f6fccda69077cfc6d220e0f665264c

Malware Analysis – djvu – 9100c922c30fa97bfd28bca79b05370f

Cobalt Stike Beacon Detected – 1[.]12[.]55[.]126:1111

Cobalt Stike Beacon Detected – 117[.]50[.]190[.]207:443

Cobalt Stike Beacon Detected – 38[.]54[.]32[.]75:443

Cobalt Stike Beacon Detected – 194[.]135[.]24[.]250:80

Daily Vulnerability Trends: Sat Nov 26 2022

Who tracked internet users in 2021–2022

Royal Ransomware Victim: Law Firm of Friedman + Bartoumian

Malware Analysis – infostealer – 04ed7aab42570d8fadd7c198758be716

Malware Analysis – infostealer – 1947bef533b3cad7c7ffa5f2351d3b2e

Malware Analysis – infostealer – 9b3ba6776b2aa31472e7894ea3b5b2b5

Malware Analysis – ransomware – 5f01792a9084e926ffd9004d90dfa3c4

Malware Analysis – ransomware – deba907b5cfc77a876c20a4ca16c15ab

Malware Analysis – ransomware – 76c1070a673007b161f938eb1b48f3e0

Malware Analysis – evasion – 7ffc2f56be26eb249106c3456e0d88b6

Malware Analysis – ransomware – e5e9b813d2029861a525e5d0c5eb5e73

Malware Analysis – evasion – 678bd5d6ad5a247547f59ad09bc5b86e

Malware Analysis – ctblocker – d9687bcc9a27bcd0f13b9582edb06f67

Malware Analysis – ransomware – 1d76f25260d6dc064555786ce65fb570

Malware Analysis – ransomware – 29efe40de5e0a76cecf0142310c6f968

Malware Analysis – djvu – 23f734fab44ce50b7a9aa8313ab97377

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

Cobalt Strike Beacon Detected – 119[.]91[.]203[.]199:88

You may have missed