Cobalt Stike Beacon Detected – 5[.]44[.]42[.]46:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]91:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]71[.]145[.]63:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]181[.]86[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 8fc3fff3efe99267c5b2bfffff18d77c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 8fc3fff3efe99267c5b2bfffff18d77cSHA1: c174206043042369386f0e44826b17ef23e761c7ANALYSIS DATE: 2022-11-15T11:07:33ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – smokeloader – 30f5717c7d19ac946764014ae49b8670
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 30f5717c7d19ac946764014ae49b8670SHA1: f6ec0fa83c48e36ad5457610d0219af07ab8076cANALYSIS DATE: 2022-11-15T11:22:07ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 497e58c722c33d1b5a4674e70a3f67a2
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:@redlinevip cloud (tg: @fatherofcarders), botnet:boy, botnet:mario23_10, botnet:new1, botnet:rozena1114, backdoor, collection,...
Malware Analysis – djvu – 397ae229dec0f1c462965b2d01109259
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 397ae229dec0f1c462965b2d01109259SHA1: db5c33388009d4e32a41493f0d9c457caecd376cANALYSIS DATE: 2022-11-15T11:21:03ZTTPS: T1012, T1082, T1005, T1081,...
Google to Pay a record $391M fine for misleading users about the collection of location data
Google is going to pay $391.5 million to settle with 40 states in the U.S. for secretly collecting personal location...
Previously undetected Earth Longzhi APT group is a subgroup of APT41
Trend Micro reported that the Earth Longzhi group, a previously undocumented subgroup of APT41, targets Ukraine and Asian Countries. Early this...
Avast details Worok espionage group’s compromise chain
Cyber espionage group Worok abuses Dropbox API to exfiltrate data via using a backdoor hidden in apparently innocuous image files. Researchers...
Advanced threat predictions for 2023
It is fair to say that since last year’s predictions, the world has dramatically changed. While the geopolitical landscape has...
Malware Analysis – amadey – 6b635d80897c987ca64e28cc9004a249
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, botnet:rozena1114, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – djvu – bf29eecd8ccb668323d7f61ff026b109
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bf29eecd8ccb668323d7f61ff026b109SHA1: a19a0edf8ba13b93c0a37c14e7a203a97cb94a2cANALYSIS DATE: 2022-11-15T04:49:33ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – persistence – bbb2eb960cccf3d863bacb7a2f37c07e
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: bbb2eb960cccf3d863bacb7a2f37c07eSHA1: 38dc33eaa979e0afb801cd6182c04bf264bd630aANALYSIS DATE: 2022-11-15T05:16:46ZTTPS: T1102, T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – f582c50979a0af794c0f2d3b8f94ab16
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: f582c50979a0af794c0f2d3b8f94ab16SHA1: 6633d9ab4aefffd8298d0f50eaa2192e2fa57099ANALYSIS DATE: 2022-11-15T04:56:49ZTTPS: T1060, T1112, T1158, T1088, T1089, T1082,...
Malware Analysis – nitro – 5c3f73f74ff01937543395e7c97af556
Score: 10 MALWARE FAMILY: nitroTAGS:family:nitro, persistence, ransomware, spyware, stealerMD5: 5c3f73f74ff01937543395e7c97af556SHA1: 81ea3ba54b1100945c15bdabf4d49b25f27ed13dANALYSIS DATE: 2022-11-15T05:07:03ZTTPS: T1102, T1060, T1112, T1005, T1081, T1491 ScoreMeaningExample10Known...
Malware Analysis – azov – c85b63aa4526b91acc9ad26f2b142688
Score: 10 MALWARE FAMILY: azovTAGS:family:azov, persistence, ransomware, wiperMD5: c85b63aa4526b91acc9ad26f2b142688SHA1: 3adf5f527aa132e874b48a0309f1392f5730430dANALYSIS DATE: 2022-11-15T05:01:13ZTTPS: T1060, T1112, T1012, T1120, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – nitro – 1b01b176dcc36b86e657dc05e680b39a
Score: 10 MALWARE FAMILY: nitroTAGS:family:nitro, persistence, ransomware, spyware, stealerMD5: 1b01b176dcc36b86e657dc05e680b39aSHA1: 520a2dd58117656709b09444b37682cdccff07efANALYSIS DATE: 2022-11-15T05:30:38ZTTPS: T1060, T1112, T1491, T1005, T1081, T1102 ScoreMeaningExample10Known...
Malware Analysis – djvu – cbdf6a2d83ff8f674a70ec0bbee7e279
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: cbdf6a2d83ff8f674a70ec0bbee7e279SHA1: eafd89bb91656aabaff1d3a3b58e798d85e54767ANALYSIS DATE: 2022-11-15T05:28:50ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – – b81672770e0610b00421c8822ed8b1d2
Score: 1 MALWARE FAMILY: TAGS:MD5: b81672770e0610b00421c8822ed8b1d2SHA1: 9d4c8a7a309957cd9bbf95a1e750cc60760402cbANALYSIS DATE: 2022-11-15T05:19:53ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – amadey – 556620100652076e0efed4b48a0c7499
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, botnet:rozena1114, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Cobalt Stike Beacon Detected – 143[.]198[.]93[.]238:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 149[.]28[.]81[.]98:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
