Cobalt Stike Beacon Detected – 82[.]156[.]187[.]92:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 118[.]195[.]163[.]162:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – ca680d9f26a0e5e9a4c2294c488bf46b
Score: 1 MALWARE FAMILY: TAGS:MD5: ca680d9f26a0e5e9a4c2294c488bf46bSHA1: f129f6c0e1ef884a6e1ac1b4e526d34ed8f02c37ANALYSIS DATE: 2022-11-23T19:21:43ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – a2716bd9f4f7f0ffa5b49881df348602
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: a2716bd9f4f7f0ffa5b49881df348602SHA1: 04a49bd555bb591fe7b9d9ea3b3e08494aecdf42ANALYSIS DATE: 2022-11-23T19:05:58ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 4e66f4af565563d95fe443d36dca93a0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: 4e66f4af565563d95fe443d36dca93a0SHA1: 81ea30f87ae9e096e8bafeab1affbd5e1c0ba51fANALYSIS DATE: 2022-11-23T19:06:20ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – 8aafe420b4e2d00e1f85a0374787a0e1
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8aafe420b4e2d00e1f85a0374787a0e1SHA1: 283579190345db13963c73ba48467a6306840547ANALYSIS DATE: 2022-11-23T19:12:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 43[.]138[.]37[.]185:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]19[.]149:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]182[.]211[.]71:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 149[.]248[.]20[.]183:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – b3429e9f4084ec931dad480f0940f97f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: b3429e9f4084ec931dad480f0940f97fSHA1: 0c1ba0f19fa049d3bef2d52ccbd816bb04916a84ANALYSIS DATE: 2022-11-23T22:31:54ZTTPS: T1012, T1222, T1082, T1005,...
Malware Analysis – – 444072ec68d9dad8de5f9060c74e3b90
Score: 7 MALWARE FAMILY: TAGS:MD5: 444072ec68d9dad8de5f9060c74e3b90SHA1: f3845470366d4ce52a18492f279e3a89ef25e485ANALYSIS DATE: 2022-11-23T19:53:54ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 33cf9aac2e4768e8c9e10aeb8f6a9ad6
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 33cf9aac2e4768e8c9e10aeb8f6a9ad6SHA1: 8c0ba6cafeb8b38a964bc178b96233af7e89f5e7ANALYSIS DATE: 2022-11-23T19:22:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 6fb99593905840cf95ab2364c4c87d63
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6fb99593905840cf95ab2364c4c87d63SHA1: 8d0aafee1cabe7b6cc0caf93ffafd3da3bff8b9bANALYSIS DATE: 2022-11-23T20:48:15ZTTPS: T1082, T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware...
Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
Ducktail information stealer continues to evolve
The operators behind the Ducktail information stealer continue to improve their malicious code, operators experts warn. In late July 2022,...
Malware Analysis – evasion – a7199d2ff40258ac7427ce9b513fe3fe
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: a7199d2ff40258ac7427ce9b513fe3feSHA1: a9eecc7ad31d4d57cb6ff57b1588f18e4830bcc2ANALYSIS DATE: 2022-11-23T14:18:03ZTTPS: T1490, T1012, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – persistence – 95cef99dd8ed824a90e544deb4f0d56d
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 95cef99dd8ed824a90e544deb4f0d56dSHA1: ce4ca4243380ce94c0614d250cc8f950213636edANALYSIS DATE: 2022-11-23T14:42:21ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 8c6309eabacbf95f01cea9e1e84aad4c
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8c6309eabacbf95f01cea9e1e84aad4cSHA1: fe1e785fb4519f1e4ed15351b68b399185c17aadANALYSIS DATE: 2022-11-23T14:22:45ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 34926506fefc6f5ebace4672d93af6ba
Score: 7 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 34926506fefc6f5ebace4672d93af6baSHA1: 4afaa8fe82b71906acf06cb2d7e52de160df2e85ANALYSIS DATE: 2022-11-23T14:26:51ZTTPS: T1060, T1112, T1491, T1012, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – 9e4cab69981fa679c9a84375676fcc1d
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9e4cab69981fa679c9a84375676fcc1dSHA1: f58cc7f89276024b549330f7b957ff04d0ac1c42ANALYSIS DATE: 2022-11-23T14:44:56ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – ransomware – c9d596073569322f439fd398801c53c1
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: c9d596073569322f439fd398801c53c1SHA1: 67738a5c80585149f57416273c100ca525c6cb69ANALYSIS DATE: 2022-11-23T14:58:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
