OSINT

Malware Analysis – ransomware – ec2d88186ab07f5b27be0c7b6dbba8ca

November 11, 2022

Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ec2d88186ab07f5b27be0c7b6dbba8caSHA1: f0e53b849a6b4363e7c5bdc8ead831adbb1a97b9ANALYSIS DATE: 2022-11-11T05:30:41ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – wannacry – 404545f189bbaa8246cd98d6d0fb569e

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 404545f189bbaa8246cd98d6d0fb569eSHA1: c87e6c1d762ea2adb6e00f4450a6ca4a3ffb3179ANALYSIS DATE: 2022-11-11T05:40:48ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – 49b834869493d92252c49f321b1c911b

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 49b834869493d92252c49f321b1c911bSHA1: 893a5ecddb83a9de9b1513962f92d91050cd078aANALYSIS DATE: 2022-11-11T05:41:07ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – 5683f671522cf58a19f960e7250a3e92

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 5683f671522cf58a19f960e7250a3e92SHA1: aa3f555d52167e36926b79f70c576dcf95afaaa3ANALYSIS DATE: 2022-11-11T05:41:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – aa844ae958dadb5fc86af14fdf434172

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: aa844ae958dadb5fc86af14fdf434172SHA1: 167c7de2a9cb5b0ffd6a9eb858b914b422ea11fcANALYSIS DATE: 2022-11-11T05:41:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – 3c79042a85c51720af23d4d67dc86a57

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 3c79042a85c51720af23d4d67dc86a57SHA1: 2e143752bc7f9a0d1791a85f82c40f5782cb702cANALYSIS DATE: 2022-11-11T05:40:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Cobalt Stike Beacon Detected – 193[.]149[.]189[.]245:443

November 11, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – banker – 6b22b27f63ab2b293df3c3136f208b10

November 11, 2022

Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 6b22b27f63ab2b293df3c3136f208b10SHA1: 8d0de13a16ff6beadafc9b8347214768cbdac348ANALYSIS DATE: 2022-11-10T21:34:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – banker – f2b7cbc615dce6a960cc0cbdaf2450cc

November 11, 2022

Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: f2b7cbc615dce6a960cc0cbdaf2450ccSHA1: f29ebe63d4133b35bd7d9d5a91c77cca0b48909eANALYSIS DATE: 2022-11-10T21:30:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – amadey – b4f0f746f0d8fdf3deefacf969fc7dbf

November 11, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...

Malware Analysis – amadey – fdb782a949ab68bae4ffc41ea893b912

November 11, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware,...

Malware Analysis – djvu – 647f744811e8601fc67509b459049436

November 11, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 647f744811e8601fc67509b459049436SHA1: c6956aff032391fee4c8ac1672524d882f34003dANALYSIS DATE: 2022-11-10T23:00:15ZTTPS: T1060, T1112, T1222, T1082,...

Malware Analysis – wannacry – 8f050abf3935e3b89637258891f175ca

November 11, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 8f050abf3935e3b89637258891f175caSHA1: 1abf4c198315b3cc7569ff373d2ee7d505d8acd2ANALYSIS DATE: 2022-11-10T22:00:25ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Bug Bounty

BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01

November 11, 2022

The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...

Apple out-of-band patches fix remote code execution bugs in iOS and macOS

November 10, 2022

Apple released out-of-band patches for iOS and macOS to fix a couple of code execution vulnerabilities in the libxml2 library....

HIVE Ransomware Victim: MCCROSSAN

November 10, 2022

HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...

Malware Analysis – – e92c2aeb2d415141c12a73e61a20ed20

November 10, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: e92c2aeb2d415141c12a73e61a20ed20SHA1: 3ca042cc5c33e61ebf7e96778c390b5fa6c51e0bANALYSIS DATE: 2022-11-10T15:09:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – djvu – 1980259c88fd2e3c5ce8f75da226105e

November 10, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1980259c88fd2e3c5ce8f75da226105eSHA1: 24a4abe16059cd4910efd1f0c68dce88a2473487ANALYSIS DATE: 2022-11-10T15:44:24ZTTPS: T1060, T1112, T1222, T1005,...

Malware Analysis – amadey – 758ec5a0f7a4a0953f66a7c5fce15ac4

November 10, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...

Malware Analysis – amadey – 043df0736f750138be845d2f1e7a9545

November 10, 2022

Malware Analysis – djvu – 54ec7486698c2b73e2d0f847588b2038

November 10, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 54ec7486698c2b73e2d0f847588b2038SHA1: 7fa8e73184a190d6f5a6f77be139e3627f0f5921ANALYSIS DATE: 2022-11-10T17:10:15ZTTPS: T1222, T1082, T1005, T1081,...

Bug Bounty

OSINT

Malware Analysis – ransomware – ec2d88186ab07f5b27be0c7b6dbba8ca

Malware Analysis – wannacry – 404545f189bbaa8246cd98d6d0fb569e

Malware Analysis – wannacry – 49b834869493d92252c49f321b1c911b

Malware Analysis – wannacry – 5683f671522cf58a19f960e7250a3e92

Malware Analysis – wannacry – aa844ae958dadb5fc86af14fdf434172

Malware Analysis – wannacry – 3c79042a85c51720af23d4d67dc86a57

Cobalt Stike Beacon Detected – 193[.]149[.]189[.]245:443

Malware Analysis – banker – 6b22b27f63ab2b293df3c3136f208b10

Malware Analysis – banker – f2b7cbc615dce6a960cc0cbdaf2450cc

Malware Analysis – amadey – b4f0f746f0d8fdf3deefacf969fc7dbf

Malware Analysis – amadey – fdb782a949ab68bae4ffc41ea893b912

Malware Analysis – djvu – 647f744811e8601fc67509b459049436

Malware Analysis – wannacry – 8f050abf3935e3b89637258891f175ca

BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01

Apple out-of-band patches fix remote code execution bugs in iOS and macOS

HIVE Ransomware Victim: MCCROSSAN

Malware Analysis – – e92c2aeb2d415141c12a73e61a20ed20

Malware Analysis – djvu – 1980259c88fd2e3c5ce8f75da226105e

Malware Analysis – amadey – 758ec5a0f7a4a0953f66a7c5fce15ac4

Malware Analysis – amadey – 043df0736f750138be845d2f1e7a9545

Malware Analysis – djvu – 54ec7486698c2b73e2d0f847588b2038

BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01

CISA: CISA Releases Twenty Industrial Control Systems Advisories

Researchers warn of malicious packages on PyPI using steganography

CVE Alert: CVE-2025-10459 – PHPGurukul – Beauty Parlour Management System

CVE Alert: CVE-2025-10443 – Tenda – AC9

CVE Alert: CVE-2025-10444 – Campcodes – Online Job Finder System

CVE Alert: CVE-2025-10448 – Campcodes – Online Job Finder System

CVE Alert: CVE-2025-10446 – Campcodes – Computer Sales and Inventory System

You may have missed