Security

Cobalt Stike Beacon Detected – 84[.]32[.]190[.]246:443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – c6520e4961189f550be153483734c3ad

November 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c6520e4961189f550be153483734c3adSHA1: dc83d6fe27f0047bcf21386d5d3888299356d433ANALYSIS DATE: 2022-11-12T11:49:09ZTTPS: T1222, T1053, T1005, T1081,...

Malware Analysis – djvu – 2d89df27036759a47dec7cd14f24d2f9

November 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:10k, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, trojanMD5: 2d89df27036759a47dec7cd14f24d2f9SHA1: 01f5452699d63546bf4f7f29a3bf79f4461d2ab5ANALYSIS DATE: 2022-11-12T10:02:43ZTTPS:...

Malware Analysis – djvu – 66f3b491088476ded1308917739e2274

November 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:10k, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...

Malware Analysis – discovery – 31b407850c3c20bed39117100dbcc552

November 12, 2022

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, persistence, trojan, upxMD5: 31b407850c3c20bed39117100dbcc552SHA1: 735a4acaf958402497b9e1b14ab3cb539e58889bANALYSIS DATE: 2022-11-12T10:29:08ZTTPS: T1088, T1089, T1112, T1060, T1031, T1562,...

Malware Analysis – djvu – dd48e3880d41cd5bbf59aa4e4a178196

November 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: dd48e3880d41cd5bbf59aa4e4a178196SHA1: 24c9bd4cd34b604351065f9edbf7ba3465b7627eANALYSIS DATE: 2022-11-12T05:34:12ZTTPS: T1222, T1053, T1005, T1081,...

Malware Analysis – djvu – 39aed80fd34ae8027d60f28192456d4f

November 12, 2022

Malware Analysis – – fe7e172e604ed0896708273fb4359893

November 12, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: fe7e172e604ed0896708273fb4359893SHA1: e5dbcc1f7e08c17c4dbdb2dfa92ad0dee7ab08f3ANALYSIS DATE: 2022-11-12T03:33:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – evasion – 419b3dfb0065321a023a7af508ed3b3c

November 12, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 419b3dfb0065321a023a7af508ed3b3cSHA1: 77f4bf098ec4978ecd68a8df69e165d8a635d6f6ANALYSIS DATE: 2022-11-12T03:51:40ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

An initial access broker claims to have hacked Deutsche Bank

November 12, 2022

An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on...

Cobalt Stike Beacon Detected – 51[.]89[.]205[.]14:10000

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 47[.]100[.]247[.]192:82

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 120[.]48[.]29[.]38:80

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 205[.]185[.]114[.]97:443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 124[.]220[.]10[.]78:8443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 31[.]41[.]244[.]142:443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 64[.]44[.]102[.]133:443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 124[.]223[.]217[.]185:9966

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 116[.]193[.]155[.]61:80

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 5[.]199[.]169[.]195:443

November 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – xmrig – 679a446a9df957ab96bd8eaa059f1edc

November 12, 2022

Score: 10 MALWARE FAMILY: xmrigTAGS:family:xmrig, discovery, evasion, miner, persistence, ransomware, spyware, stealerMD5: 679a446a9df957ab96bd8eaa059f1edcSHA1: a4bc35f5029077f304e3a1cd72ff75d219e4a022ANALYSIS DATE: 2022-11-11T21:38:31ZTTPS: T1012, T1082, T1060, T1112,...

Malware Analysis – hive – daa6c53378147fb212703048ad31702a

November 12, 2022

Score: 10 MALWARE FAMILY: hiveTAGS:family:hive, evasion, persistence, ransomware, spyware, stealerMD5: daa6c53378147fb212703048ad31702aSHA1: 22651c3a351fa7d21021b4713e0d30dfd9ce48e4ANALYSIS DATE: 2022-11-11T22:00:07ZTTPS: T1059, T1107, T1490, T1060, T1112, T1082,...

Malware Analysis – djvu – bc61264ac2c5e2665df415cb70a1326a

November 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bc61264ac2c5e2665df415cb70a1326aSHA1: a909736d0ef0df42cd31546bdb08b82d9470898bANALYSIS DATE: 2022-11-11T23:07:20ZTTPS: T1082, T1012, T1060, T1112,...

CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS

November 11, 2022

This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used...

Security

Cobalt Stike Beacon Detected – 84[.]32[.]190[.]246:443

Malware Analysis – djvu – c6520e4961189f550be153483734c3ad

Malware Analysis – djvu – 2d89df27036759a47dec7cd14f24d2f9

Malware Analysis – djvu – 66f3b491088476ded1308917739e2274

Malware Analysis – discovery – 31b407850c3c20bed39117100dbcc552

Malware Analysis – djvu – dd48e3880d41cd5bbf59aa4e4a178196

Malware Analysis – djvu – 39aed80fd34ae8027d60f28192456d4f

Malware Analysis – – fe7e172e604ed0896708273fb4359893

Malware Analysis – evasion – 419b3dfb0065321a023a7af508ed3b3c

An initial access broker claims to have hacked Deutsche Bank

Cobalt Stike Beacon Detected – 51[.]89[.]205[.]14:10000

Cobalt Stike Beacon Detected – 47[.]100[.]247[.]192:82

Cobalt Stike Beacon Detected – 120[.]48[.]29[.]38:80

Cobalt Stike Beacon Detected – 205[.]185[.]114[.]97:443

Cobalt Stike Beacon Detected – 124[.]220[.]10[.]78:8443

Cobalt Stike Beacon Detected – 31[.]41[.]244[.]142:443

Cobalt Stike Beacon Detected – 64[.]44[.]102[.]133:443

Cobalt Stike Beacon Detected – 124[.]223[.]217[.]185:9966

Cobalt Stike Beacon Detected – 116[.]193[.]155[.]61:80

Cobalt Stike Beacon Detected – 5[.]199[.]169[.]195:443

Malware Analysis – xmrig – 679a446a9df957ab96bd8eaa059f1edc

Malware Analysis – hive – daa6c53378147fb212703048ad31702a

Malware Analysis – djvu – bc61264ac2c5e2665df415cb70a1326a

CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS

CVE Alert: CVE-2025-6081

CVE Alert: CVE-2025-41648

CVE Alert: CVE-2025-41656

CVE Alert: CVE-2025-6934

CVE Alert: CVE-2025-5072

You may have missed