Aurora Stealer Malware is becoming a prominent threat in the cybercrime ecosystem
Researchers warn of threat actors employing a new Go-based malware dubbed Aurora Stealer in attacks in the wild. Aurora Stealer...
Security
Stegowiper – A Powerful And Flexible Tool To Apply Active Attacks For Disrupting Stegomalware
Over the last 10 years, many threat groups have employed stegomalware or other steganography-based techniques to attack organizations from all...
Cobalt Stike Beacon Detected – 173[.]82[.]206[.]184:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]61[.]211:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]34[.]226[.]129:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]134[.]59:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]253[.]125:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]25[.]103[.]78:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 210[.]61[.]186[.]116:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 37[.]1[.]214[.]31:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – 8f2da48a3c836889388c485d28e4fda4
Score: 6 MALWARE FAMILY: TAGS:MD5: 8f2da48a3c836889388c485d28e4fda4SHA1: d374b1f085bfec71fb3db23c9319d9b618dcb03dANALYSIS DATE: 2022-11-22T10:17:45ZTTPS: T1012, T1082, T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Cobalt Stike Beacon Detected – 121[.]5[.]138[.]100:50000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]139[.]46[.]82:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]144[.]244:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]199[.]169[.]236:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 59f196d429eff3d53f060a349853e04a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 59f196d429eff3d53f060a349853e04aSHA1: a975dbff2ae0780d11b09e0d9c6d20a90d494bfcANALYSIS DATE: 2022-11-22T10:24:37ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – – b7d7159b2009efe022a13a2230776204
Score: 1 MALWARE FAMILY: TAGS:MD5: b7d7159b2009efe022a13a2230776204SHA1: de42e42880615597a9286671052f8010089e5231ANALYSIS DATE: 2022-11-22T11:29:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 5085d36f174e9981b33d2107d5c3b0e9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 5085d36f174e9981b33d2107d5c3b0e9SHA1: 4fe0675c66a51b3ca425fdd2060b9d7455eae764ANALYSIS DATE: 2022-11-22T10:33:36ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – amadey – b26c34994de77a1188bcb110985f7056
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:kript, botnet:novr, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Two Estonian citizens arrested in $575M cryptocurrency fraud scheme
Two Estonian citizens were arrested in Tallinn for allegedly running a $575 million cryptocurrency fraud scheme. Two Estonian nationals were...
Emotet is back and delivers payloads like IcedID and Bumblebee
The Emotet malware is back and experts warn of a high-volume malspam campaign delivering payloads like IcedID and Bumblebee. Proofpoint...
Malware Analysis – djvu – 078f25c957093eb4ed171180c617abd6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 078f25c957093eb4ed171180c617abd6SHA1: 4f527b0890380b4b645d4d19d4e8bb5823725cdeANALYSIS DATE: 2022-11-22T05:53:49ZTTPS: T1082, T1012, T1060, T1112, T1222 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – bb90548c9c0dd6e411c236b55004a392
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: bb90548c9c0dd6e411c236b55004a392SHA1: 1e1db20778c735c26ac2411fa565a1ff43405327ANALYSIS DATE: 2022-11-22T03:11:47ZTTPS: T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – ef6418c5bd481f4bd21178d59c435c59
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ef6418c5bd481f4bd21178d59c435c59SHA1: 764a8ca4dd4376ef3f01f3163bad4ab125b86380ANALYSIS DATE: 2022-11-22T03:45:06ZTTPS: T1012, T1082, T1005, T1081,...
