Security

Malware Analysis – djvu – e12d62a9826a5774ad165bb70b120663

November 8, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...

Malware Analysis – djvu – 7b938bd47d22fb1e51480873bcbbcdb8

November 8, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 7b938bd47d22fb1e51480873bcbbcdb8SHA1: 25729d6a9505e8dbc45ea5b5121dbf1792785ed2ANALYSIS DATE: 2022-11-08T16:51:08ZTTPS: T1005, T1081, T1012, T1082,...

Malware Analysis – adware – 0b30dcf3e2af94c3e3e6e377d904d0d0

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 0b30dcf3e2af94c3e3e6e377d904d0d0SHA1: e662c515dc57056d0703bafe6d9b3c7c25156b47ANALYSIS DATE: 2022-11-08T17:37:58ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...

Malware Analysis – adware – 0ad4ba6b364996ffc065163089546840

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 0ad4ba6b364996ffc065163089546840SHA1: ccd32688216e18476d7415e27c5c5750e2ab7a61ANALYSIS DATE: 2022-11-08T17:38:00ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...

Malware Analysis – raccoon – 2c4a9effba41930d4dfd9430cde5eb40

November 8, 2022

Score: 10 MALWARE FAMILY: raccoonTAGS:family:raccoon, family:redline, family:smokeloader, botnet:1020939650_99, botnet:71dfd37ad40a834e3757b044e3efa038, backdoor, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan, upxMD5: 2c4a9effba41930d4dfd9430cde5eb40SHA1: 4809f4ae06e32cadf40a6af7a8e129e17c8676f7ANALYSIS...

Malware Analysis – chaos – 67fbcd1f2553dd915a211f940d14b280

November 8, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, upxMD5: 67fbcd1f2553dd915a211f940d14b280SHA1: 55402cd3435944f038c310f88df01f13cfa3e1a5ANALYSIS DATE: 2022-11-08T17:00:08ZTTPS: T1130, T1112, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – adware – 0834c751f3ef78c0447990a4b34065e0

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 0834c751f3ef78c0447990a4b34065e0SHA1: 9ebef84b1a1a0b6b565a24a0c7d64fb20099ac84ANALYSIS DATE: 2022-11-08T17:38:11ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...

Malware Analysis – makop – 5bcf1a6a65d8d0d2ad1c2a78935322b5

November 8, 2022

Score: 10 MALWARE FAMILY: makopTAGS:family:makop, ransomware, spyware, stealerMD5: 5bcf1a6a65d8d0d2ad1c2a78935322b5SHA1: c5af15f8170e3840ba756397cb1548fa9489fae9ANALYSIS DATE: 2022-11-08T17:51:03ZTTPS: T1059, T1107, T1490, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – adware – 0a4d6622e3c23f77d81933d9674cfdc0

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 0a4d6622e3c23f77d81933d9674cfdc0SHA1: c943696e0dca79a61f7a51f2dfbf7c9089fef3acANALYSIS DATE: 2022-11-08T17:38:03ZTTPS: T1060, T1112, T1222, T1176 ScoreMeaningExample10Known badA...

Malware Analysis – adware – 020bff1e60f35caa632b9967043d4ab0

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 020bff1e60f35caa632b9967043d4ab0SHA1: 60614686aa19453fb10c4aaf92ede5ce297ec551ANALYSIS DATE: 2022-11-08T17:38:05ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...

Digital Binary Code on Dark Red Background. Data Breach

GGCorp – 2,376,330 breached accounts

November 8, 2022

In August 2022, the MMORPG website GGCorp suffered a data breach that exposed almost 2.4M unique email addresses. The data...

Cobalt Stike Beacon Detected – 107[.]189[.]7[.]248:80

November 8, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 124[.]71[.]155[.]200:6443

November 8, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

November 8, 2022

Australian health insurer Medibank confirmed that personal data belonging to around 9.7 million current and former customers were exposed as...

US DoJ seizes $3.36B Bitcoin from Silk Road hacker

November 8, 2022

The U.S. Department of Justice condemned James Zhong, a hacker who stole 50,000 bitcoins from the Silk Road dark net...

sl-ddos-attack-botnet-bots-server-overloaded-scaled-1-990x400-1

DDoS attacks in Q3 2022

November 8, 2022

News overview In Q3 2022, DDoS attacks were, more often than not, it seemed, politically motivated. As before, most news...

Malware Analysis – adware – 05bef863589d9acccb2f7c522b4c5b00

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealerMD5: 05bef863589d9acccb2f7c522b4c5b00SHA1: e318054d17d150fa7e186aaf80e6721ed3e83e21ANALYSIS DATE: 2022-11-07T12:59:25ZTTPS: T1112, T1176, T1060, T1222, T1012, T1120, T1082...

Malware Analysis – evasion – ab250ebe2f438cff6b309b1578d34841

November 8, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: ab250ebe2f438cff6b309b1578d34841SHA1: 59782b26f3e4edc0b6cc84fb093af83c9184ca66ANALYSIS DATE: 2022-11-07T12:31:56ZTTPS: T1112, T1082, T1060, T1158, T1088, T1089,...

Malware Analysis – discovery – 0c5b142e4185e130b90411ec1392b0a1

November 8, 2022

Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 0c5b142e4185e130b90411ec1392b0a1SHA1: 11880fc4b89758d1a98e74945ae3db3fbd71a01dANALYSIS DATE: 2022-11-07T12:36:09ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – evasion – 05dc00f831ba92f47580e1322aea7436

November 8, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, spyware, stealer, trojan, upxMD5: 05dc00f831ba92f47580e1322aea7436SHA1: 63b9ea9028a8a471e75c80ecd03c3689bb28a048ANALYSIS DATE: 2022-11-07T12:25:52ZTTPS: T1112, T1031, T1089, T1082, T1060, T1004,...

Malware Analysis – discovery – 0680f7da6630e9e3927f2ab51cc86176

November 8, 2022

Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 0680f7da6630e9e3927f2ab51cc86176SHA1: e4b4b1c8ed1253c17a10760561cbf1d98249702fANALYSIS DATE: 2022-11-07T13:37:19ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – evasion – ab0aae887728457383b9d717e9233f11

November 8, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: ab0aae887728457383b9d717e9233f11SHA1: 280cf575a55dd5c1ceb686de09c725bba933f1edANALYSIS DATE: 2022-11-07T13:30:58ZTTPS: T1112, T1158, T1060, T1004, T1082, T1088,...

Malware Analysis – adware – 0e07c9d7250a78436faaeeaa37d7c490

November 8, 2022

Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealerMD5: 0e07c9d7250a78436faaeeaa37d7c490SHA1: 2f5454baad432a8d3675e711e05482081343161dANALYSIS DATE: 2022-11-07T13:59:59ZTTPS: T1222, T1012, T1120, T1082, T1112, T1176, T1060...

Malware Analysis – discovery – 0ff6ccecab3995236b61eb0414f1fe01

November 8, 2022

Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 0ff6ccecab3995236b61eb0414f1fe01SHA1: 0b8ac51b431d4824e8c981e1d7e61da930078023ANALYSIS DATE: 2022-11-07T13:19:23ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Security

Malware Analysis – djvu – e12d62a9826a5774ad165bb70b120663

Malware Analysis – djvu – 7b938bd47d22fb1e51480873bcbbcdb8

Malware Analysis – adware – 0b30dcf3e2af94c3e3e6e377d904d0d0

Malware Analysis – adware – 0ad4ba6b364996ffc065163089546840

Malware Analysis – raccoon – 2c4a9effba41930d4dfd9430cde5eb40

Malware Analysis – chaos – 67fbcd1f2553dd915a211f940d14b280

Malware Analysis – adware – 0834c751f3ef78c0447990a4b34065e0

Malware Analysis – makop – 5bcf1a6a65d8d0d2ad1c2a78935322b5

Malware Analysis – adware – 0a4d6622e3c23f77d81933d9674cfdc0

Malware Analysis – adware – 020bff1e60f35caa632b9967043d4ab0

GGCorp – 2,376,330 breached accounts

Cobalt Stike Beacon Detected – 107[.]189[.]7[.]248:80

Cobalt Stike Beacon Detected – 124[.]71[.]155[.]200:6443

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

US DoJ seizes $3.36B Bitcoin from Silk Road hacker

DDoS attacks in Q3 2022

Malware Analysis – adware – 05bef863589d9acccb2f7c522b4c5b00

Malware Analysis – evasion – ab250ebe2f438cff6b309b1578d34841

Malware Analysis – discovery – 0c5b142e4185e130b90411ec1392b0a1

Malware Analysis – evasion – 05dc00f831ba92f47580e1322aea7436

Malware Analysis – discovery – 0680f7da6630e9e3927f2ab51cc86176

Malware Analysis – evasion – ab0aae887728457383b9d717e9233f11

Malware Analysis – adware – 0e07c9d7250a78436faaeeaa37d7c490

Malware Analysis – discovery – 0ff6ccecab3995236b61eb0414f1fe01

HackerOne Bug Bounty Disclosure: sql-injection-when-using-filteredrelation-eyalsec

Cobalt Strike Beacon Detected – 121[.]43[.]37[.]134:4434

Cobalt Strike Beacon Detected – 119[.]29[.]231[.]118:443

Cobalt Strike Beacon Detected – 39[.]101[.]74[.]162:443

Cobalt Strike Beacon Detected – 8[.]218[.]112[.]112:8880

You may have missed