Cobalt Stike Beacon Detected – 103[.]150[.]173[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 47[.]98[.]114[.]169:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]180[.]97:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]92:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]19[.]140[.]23:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]46:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]187[.]120:8085
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 195[.]133[.]40[.]133:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]133[.]138:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 94[.]131[.]2[.]34:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 13[.]115[.]214[.]254:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Posh C2 Detected – 45[.]137[.]117[.]200:8443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Daily Vulnerability Trends: Sun Oct 30 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-40684An authentication bypass using an alternate path or channel in Fortinet FortiOS...
LockBit 3.0 Ransomware Victim: groupesavoie[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: congerbuilt[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tokaisolidtire[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: lincare[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: railway[.]gov[.]tw
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – discovery – a3629e1ac9a406713d4301202e559d00
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: a3629e1ac9a406713d4301202e559d00SHA1: 38504d98f976fa87da12a9c0165f5e37dc33611aANALYSIS DATE: 2022-10-29T20:22:22ZTTPS: T1222, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – 55afea6e347e2249fab29a55a5df9ba1
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 55afea6e347e2249fab29a55a5df9ba1SHA1: 0908dd743908cd8208f835a301286c81a1d22642ANALYSIS DATE: 2022-10-29T20:22:21ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – a3975628bc4302b107fcf1a043f7eaad
Score: 7 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a3975628bc4302b107fcf1a043f7eaadSHA1: 4cc28edca51befdddbebc9053b4fa910bc8fa3ecANALYSIS DATE: 2022-10-29T19:57:56ZTTPS: T1012, T1082, T1060, T1112, T1491 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – wannacry – 0629d8804e1c50934aa2a55213828b21
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 0629d8804e1c50934aa2a55213828b21SHA1: a9beac5c15f51b67c7f6237a3deb7ff960a91c71ANALYSIS DATE: 2022-10-30T03:00:22ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – ransomware – 561ea4834fddc37604a8edfd59646f79
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 561ea4834fddc37604a8edfd59646f79SHA1: 0091fb9c80a147f96683d084c082af0fc06716daANALYSIS DATE: 2022-10-30T03:01:53ZTTPS: T1112, T1158, T1082, T1059, T1012, T1057 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – persistence – 17f409be70237abeeeca57f18c504bcf
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 17f409be70237abeeeca57f18c504bcfSHA1: 64d1776631eb4644721fbee42c0bbf30da8783fbANALYSIS DATE: 2022-10-30T04:41:51ZTTPS: T1082, T1112, T1491, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
