How Water Labbu Exploits Electron-Based Applications
In the second part of our Water Labbu blog series, we explore how the threat actor exploits Electron-based applications using...
OSINT
New Maggie malware already infected over 250 Microsoft SQL servers
Hundreds of Microsoft SQL servers all over the world have been infected with a new piece of malware tracked as Maggie....
Malware Analysis – smokeloader – fbb043bd8741a259448382485bd29dd6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fbb043bd8741a259448382485bd29dd6SHA1: 521882d7a76d6496f800bf5e652e5bd5c07ab1f8ANALYSIS DATE: 2022-10-05T17:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
LockBit 3.0 Ransomware Victim: apunipima[.]org[.]au
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – smokeloader – ffcfc1526b2540403e83ffb80c1274a9
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – ffcfc1526b2540403e83ffb80c1274a9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:10:26ZTTPS: T1130, T1112, T1082,...
Malware Analysis – smokeloader – 4db342e59e4063a33e39bf2922746104
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 4db342e59e4063a33e39bf2922746104SHA1: 0f7cb769a3037816003d7ee2e12cc033bd0a4a6fANALYSIS DATE: 2022-10-05T15:01:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 95503e66b8b02be76b487665cd22127e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95503e66b8b02be76b487665cd22127eSHA1: aa950f5da6313eea5b765e68ba5842316f7c31eaANALYSIS DATE: 2022-10-05T14:24:31ZTTPS: T1060, T1112, T1222, T1053,...
Malware Analysis – djvu – fc47e9571ca6ac5aa22494a8924c5303
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fc47e9571ca6ac5aa22494a8924c5303SHA1: 3f38e682284990961cec20317ef33e675dc20d43ANALYSIS DATE: 2022-10-05T14:27:13ZTTPS: T1060, T1112, T1082, T1012,...
Malware Analysis – djvu – 22b1a5fcdece245a65bad95364c883ab
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 22b1a5fcdece245a65bad95364c883abSHA1: 725f469899973463a0e900ec59076cce338f7ad5ANALYSIS DATE: 2022-10-05T15:13:40ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – 4db342e59e4063a33e39bf2922746104
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 4db342e59e4063a33e39bf2922746104SHA1: 0f7cb769a3037816003d7ee2e12cc033bd0a4a6fANALYSIS DATE: 2022-10-05T15:11:46ZTTPS:...
Malware Analysis – djvu – c930da72228be1f2154dd5ce35535c0e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c930da72228be1f2154dd5ce35535c0eSHA1: c43fbf1331a8cf89ae74ded04873325bf6160f81ANALYSIS DATE: 2022-10-05T15:16:43ZTTPS: T1012, T1005, T1081, T1222,...
Malware Analysis – avaddon – bc52d18853a6b575d319692ae8f90fd7
Score: 10 MALWARE FAMILY: avaddonTAGS:family:avaddon, evasion, ransomware, trojanMD5: bc52d18853a6b575d319692ae8f90fd7SHA1: 882b07d029ba27a64f442fa0e3047775667c2957ANALYSIS DATE: 2022-10-05T15:20:26ZTTPS: T1012, T1120, T1082, T1107, T1490, T1088, T1089, T1112...
Malware Analysis – djvu – 1bb973121130046bdca6cf5366891821
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 1bb973121130046bdca6cf5366891821SHA1: cb87eca19a0dc04828c1a4bc6f01894562d97b05ANALYSIS DATE: 2022-10-05T15:39:56ZTTPS:...
Malware Analysis – smokeloader – 1bb973121130046bdca6cf5366891821
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 1bb973121130046bdca6cf5366891821SHA1: cb87eca19a0dc04828c1a4bc6f01894562d97b05ANALYSIS DATE: 2022-10-05T15:31:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 2aa4c7dbfea83658bc01b5bcd0a58178
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 2aa4c7dbfea83658bc01b5bcd0a58178SHA1: bb2ba7ea49a4ee5acf64fe4535ef64ca64813b4fANALYSIS DATE: 2022-10-05T15:34:13ZTTPS: T1222, T1012, T1005, T1081,...
Malware Analysis – smokeloader – 1bb973121130046bdca6cf5366891821
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 1bb973121130046bdca6cf5366891821SHA1: cb87eca19a0dc04828c1a4bc6f01894562d97b05ANALYSIS DATE: 2022-10-05T15:31:59ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – ff85205dd23b73ced624661171ef5c20
Score: 1 MALWARE FAMILY: TAGS:MD5: ff85205dd23b73ced624661171ef5c20SHA1: a72dad57cdcb556d7d8fb044052132a2e3d6ff52ANALYSIS DATE: 2022-10-05T15:50:01ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 9a2fc7060a890ac5dae857ba330775ec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9a2fc7060a890ac5dae857ba330775ecSHA1: 6175729b50b4007f470ae5817612679ae21abd75ANALYSIS DATE: 2022-10-05T15:54:33ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – djvu – ba1706454ac5e3a8541f776d4ca961b0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ba1706454ac5e3a8541f776d4ca961b0SHA1: 1eb730050e4e7981778f05f363ace28262d2f57aANALYSIS DATE: 2022-10-05T15:42:29ZTTPS: T1005, T1081, T1222, T1012,...
Malware Analysis – ransomware – fed98c2820ca40c228ef080ddf68e994
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: fed98c2820ca40c228ef080ddf68e994SHA1: c61dd67fa85a6e3e1cf48512263a7097d0eac80eANALYSIS DATE: 2022-10-05T15:40:00ZTTPS: T1082, T1005, T1081, T1491, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – f7d6001c5cf2e09a7ac2682ee18739d0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f7d6001c5cf2e09a7ac2682ee18739d0SHA1: 2b2b5bc208d0b00d72671722703a1491c43a74a0ANALYSIS DATE: 2022-10-05T16:03:42ZTTPS: T1060, T1112, T1082, T1053,...
Malware Analysis – smokeloader – bff503746b3152016b17bb3062ab9a8a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: bff503746b3152016b17bb3062ab9a8aSHA1: f15e9b16d52548a03361de7320b2c42f085ae332ANALYSIS DATE: 2022-10-05T16:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – bff503746b3152016b17bb3062ab9a8a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: bff503746b3152016b17bb3062ab9a8aSHA1: f15e9b16d52548a03361de7320b2c42f085ae332ANALYSIS DATE: 2022-10-05T16:03:39ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
