OSINT

Malware Analysis – amadey – ca94e554bf77b157d780d454e38afb80

November 30, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, ransomware, spyware, stealer, trojanMD5: ca94e554bf77b157d780d454e38afb80SHA1: 860ef500c61be60f1a1514c5cf60447ce0c729bdANALYSIS DATE: 2022-11-30T04:22:11ZTTPS: T1012, T1082, T1053, T1005,...

Malware Analysis – djvu – 924cedaa60e2eba5624e7b2cb03f3ff2

November 30, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 924cedaa60e2eba5624e7b2cb03f3ff2SHA1: 34d61d5edf80b5dd7cdc7cccc4ca3dcf96115eb6ANALYSIS DATE: 2022-11-30T03:31:03ZTTPS: T1222, T1005, T1081, T1060,...

Malware Analysis – ransomware – 1022a2c4eaa199f75ebce324e214b9a2

November 30, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 1022a2c4eaa199f75ebce324e214b9a2SHA1: 199c72ebc27ab44a58ec70bfe7885189b8f8f522ANALYSIS DATE: 2022-11-28T14:31:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – b68602c4a39048ba6bf905198b7218b9

November 30, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b68602c4a39048ba6bf905198b7218b9SHA1: 4571b54859801b5ed8d5d48d167eef5b327c2787ANALYSIS DATE: 2022-11-28T14:29:43ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – acff34e3eda63363b3355e2b539bdbbe

November 30, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: acff34e3eda63363b3355e2b539bdbbeSHA1: ab80245ba1abca5cb39c2c9208c2768f2ccde86aANALYSIS DATE: 2022-11-28T14:32:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – infostealer – 1f6ed14689884c7557ab769b1a2aac3d

November 30, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 1f6ed14689884c7557ab769b1a2aac3dSHA1: 89ff7f3ef980c787cd5f9d46407be408b9c85ea8ANALYSIS DATE: 2022-11-28T14:42:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – 5df8d7eca7c33d5f9aa8dc119d2b07d1

November 30, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 5df8d7eca7c33d5f9aa8dc119d2b07d1SHA1: 5ae9eef8144515f2f9722c5a989136a15d4c3c04ANALYSIS DATE: 2022-11-28T14:42:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 9256cc7069a19afe3abb130985481376

November 30, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 9256cc7069a19afe3abb130985481376SHA1: 854d245cbc6cb681e299299af76a2cf253a5d010ANALYSIS DATE: 2022-11-28T14:43:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – af52bfa60e2c02ce7fb034d5374b2b22

November 30, 2022

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: af52bfa60e2c02ce7fb034d5374b2b22SHA1: 5ce429e94bee8b16bf38c86bd25d693e1184583bANALYSIS DATE: 2022-11-28T14:40:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – ca732c7e16c71937ee53c540872640ff

November 30, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ca732c7e16c71937ee53c540872640ffSHA1: c23fc2c69a7c7a7ec8ed82bd1ca8206cee07c8e3ANALYSIS DATE: 2022-11-28T14:49:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – infostealer – 3e5cb6f6484036bfa0b48d81e5b8806e

November 30, 2022

Score: 7 MALWARE FAMILY: infostealerTAGS:infostealer, ransomwareMD5: 3e5cb6f6484036bfa0b48d81e5b8806eSHA1: c7a023d161eac7645adb02db8ba45127b39d2c4dANALYSIS DATE: 2022-11-28T14:49:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – 404a8cb7396ad1802aa5fcdd14ae2226

November 30, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 404a8cb7396ad1802aa5fcdd14ae2226SHA1: 60bbabaf44ae289bc8b0fd11ece35f0a8bce1601ANALYSIS DATE: 2022-11-28T14:46:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 37e5459eac62ca14aa93e591b9e4061b

November 30, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 37e5459eac62ca14aa93e591b9e4061bSHA1: 52934ec0a9eeef36523aa8e653edf6b21eb371e2ANALYSIS DATE: 2022-11-28T14:45:17ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – evasion – f217d2d02acb2d60477f7dabf30b9cbd

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: f217d2d02acb2d60477f7dabf30b9cbdSHA1: eaeb734c4caa82c8a23325e3a5299e36be574dffANALYSIS DATE: 2022-11-28T15:09:09ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – d39ff6af6f6ecb3a8fbb50bda74bdea7

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: d39ff6af6f6ecb3a8fbb50bda74bdea7SHA1: e2d79edae3d29ae84123c0dc4b1f84e39a0e9297ANALYSIS DATE: 2022-11-28T15:00:44ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 80a735b520d4f75a4cb7ac829de99ab4

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 80a735b520d4f75a4cb7ac829de99ab4SHA1: e7a0e483d97424c6cf75d402325cd31eef730bfaANALYSIS DATE: 2022-11-28T15:00:47ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 3b822754df5ce1993e8a2d9c58c8a1db

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 3b822754df5ce1993e8a2d9c58c8a1dbSHA1: aa08f3238c260436a44b1b1f599583223a31c376ANALYSIS DATE: 2022-11-28T15:00:49ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 8352c49b23f3c987590c7694f364cd97

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 8352c49b23f3c987590c7694f364cd97SHA1: 428cf81d02e612fb870c79a0bc6d09d505b3499cANALYSIS DATE: 2022-11-28T15:09:11ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 2969a74c99c2fccd41bbe372fa03c7d0

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 2969a74c99c2fccd41bbe372fa03c7d0SHA1: d178998ac26a391655cbe7122f18620f9284e9f2ANALYSIS DATE: 2022-11-28T15:09:21ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – c04ac6ab27da7fec2298bdd54689bfb5

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: c04ac6ab27da7fec2298bdd54689bfb5SHA1: 965d4339aea024b6978ace0b9c1d93cfe9517fd7ANALYSIS DATE: 2022-11-28T15:09:15ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 5db72348dc8a5d0b6c21fcbebabee871

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 5db72348dc8a5d0b6c21fcbebabee871SHA1: 8dec403c4f8403065610cc7a7e7c885d2392911fANALYSIS DATE: 2022-11-28T15:09:13ZTTPS: T1112, T1107, T1490, T1082, T1060 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – a0b77201ad924842cfe95073ed737134

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: a0b77201ad924842cfe95073ed737134SHA1: 7f9d932728f565d1821b89deac644713701fc75cANALYSIS DATE: 2022-11-28T15:09:40ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – eff74723d47cda968e51da307bd370dd

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: eff74723d47cda968e51da307bd370ddSHA1: 3fbaed80af3da2f8ca3f82d7f008b5c691a659b0ANALYSIS DATE: 2022-11-28T15:09:28ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – badf8b47c0d1e8892010004480d8b1f1

November 30, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: badf8b47c0d1e8892010004480d8b1f1SHA1: 4fcb4202e8b8bd1e739efe8d7e9e35a5f6a0358eANALYSIS DATE: 2022-11-28T16:08:30ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...

OSINT

Malware Analysis – amadey – ca94e554bf77b157d780d454e38afb80

Malware Analysis – djvu – 924cedaa60e2eba5624e7b2cb03f3ff2

Malware Analysis – ransomware – 1022a2c4eaa199f75ebce324e214b9a2

Malware Analysis – ransomware – b68602c4a39048ba6bf905198b7218b9

Malware Analysis – ransomware – acff34e3eda63363b3355e2b539bdbbe

Malware Analysis – infostealer – 1f6ed14689884c7557ab769b1a2aac3d

Malware Analysis – ransomware – 5df8d7eca7c33d5f9aa8dc119d2b07d1

Malware Analysis – ransomware – 9256cc7069a19afe3abb130985481376

Malware Analysis – ransomware – af52bfa60e2c02ce7fb034d5374b2b22

Malware Analysis – ransomware – ca732c7e16c71937ee53c540872640ff

Malware Analysis – infostealer – 3e5cb6f6484036bfa0b48d81e5b8806e

Malware Analysis – ransomware – 404a8cb7396ad1802aa5fcdd14ae2226

Malware Analysis – ransomware – 37e5459eac62ca14aa93e591b9e4061b

Malware Analysis – evasion – f217d2d02acb2d60477f7dabf30b9cbd

Malware Analysis – evasion – d39ff6af6f6ecb3a8fbb50bda74bdea7

Malware Analysis – evasion – 80a735b520d4f75a4cb7ac829de99ab4

Malware Analysis – evasion – 3b822754df5ce1993e8a2d9c58c8a1db

Malware Analysis – evasion – 8352c49b23f3c987590c7694f364cd97

Malware Analysis – evasion – 2969a74c99c2fccd41bbe372fa03c7d0

Malware Analysis – evasion – c04ac6ab27da7fec2298bdd54689bfb5

Malware Analysis – evasion – 5db72348dc8a5d0b6c21fcbebabee871

Malware Analysis – evasion – a0b77201ad924842cfe95073ed737134

Malware Analysis – evasion – eff74723d47cda968e51da307bd370dd

Malware Analysis – evasion – badf8b47c0d1e8892010004480d8b1f1

Cobalt Strike Beacon Detected – 121[.]41[.]167[.]80:80

Cobalt Strike Beacon Detected – 38[.]190[.]224[.]63:80

Cobalt Strike Beacon Detected – 152[.]32[.]251[.]78:80

Cobalt Strike Beacon Detected – 156[.]233[.]233[.]134:80

Cobalt Strike Beacon Detected – 124[.]220[.]164[.]98:80

You may have missed