OSINT

Malware Analysis – smokeloader – fa3c884cd50596bd653c756bac035d80

December 16, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fa3c884cd50596bd653c756bac035d80SHA1: a14c295a1bff83511d82ec2c9a251e059e1a5c6aANALYSIS DATE: 2022-12-16T16:12:57ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 8a64beecdd29c0c3d767b687036d2b92

December 16, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 8a64beecdd29c0c3d767b687036d2b92SHA1: 05e951697f03dcca95c80bed95434a6eab380a5dANALYSIS DATE:...

CISA: FBI, FDA OCI, and USDA Release Joint Cybersecurity Advisory Regarding Business Email Compromise Schemes Used to Steal Food

December 16, 2022

FBI, FDA OCI, and USDA Release Joint Cybersecurity Advisory Regarding Business Email Compromise Schemes Used to Steal Food The Federal...

Malware Analysis – evasion – 9b41cf5e2a4ea79e030472bfdd72a6e7

December 16, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9b41cf5e2a4ea79e030472bfdd72a6e7SHA1: edb40e395d0d81b56c43d0008e3664cdf124bc14ANALYSIS DATE: 2022-12-16T17:30:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – evasion – 077b7f24c33b31d88fb23c169a137d2e

December 16, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 077b7f24c33b31d88fb23c169a137d2eSHA1: b47eda1e2f6b6708c83a67516898ef5c7cb7da43ANALYSIS DATE: 2022-12-16T16:32:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – djvu – 8a64beecdd29c0c3d767b687036d2b92

December 16, 2022

Malware Analysis – banker – c27c9136e81deb8cfdcff0e56f81638f

December 16, 2022

Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: c27c9136e81deb8cfdcff0e56f81638fSHA1: b7a813be289103f2f95e4a2377a24c1835c09c54ANALYSIS DATE: 2022-12-16T17:00:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

LockBit 3.0 Ransomware Victim: prinovaglobal[.]com

December 16, 2022

LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Data of 5.7M Gemini users available for sale on hacking forums

December 16, 2022

Gemini crypto exchange warns users of an ongoing phishing campaign after a third-party vendor suffered a security breach. Gemini crypto...

AzureHound – Azure Data Exporter For BloodHound

December 16, 2022

The BloodHound data collector for Microsoft Azure Get AzureHound Release Binaries Download the appropriate binary for your platform from one...

Royal Ransomware Victim: Mol

December 16, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Malware Analysis – djvu – fb4179ed52ae3e372dbd7236c36bad07

December 16, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: fb4179ed52ae3e372dbd7236c36bad07SHA1: 3a429fab3ada61843ff58cd601a3240f16bc2e83ANALYSIS DATE: 2022-12-16T10:20:19ZTTPS: T1060, T1112, T1082, T1012, T1053, T1005,...