Cobalt Stike Beacon Detected – 124[.]221[.]195[.]114:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]14:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – d83d5eb2e04dfb86886580c499e8c6c8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d83d5eb2e04dfb86886580c499e8c6c8SHA1: 5cc72ad56333105c3125c347996a375f6eea3ff1ANALYSIS DATE: 2022-10-05T21:04:30ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – smokeloader – a1a707c217336e4ae154a23f36f3608d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a1a707c217336e4ae154a23f36f3608dSHA1: 23e83155a5741a21cfae3f635ba964f308b2da8eANALYSIS DATE: 2022-10-05T20:31:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 47343ccd035c2123139b06a606f676dd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 47343ccd035c2123139b06a606f676ddSHA1: d16e1331d5dd2011a2f5a31b027421c8559313e1ANALYSIS DATE: 2022-10-05T20:43:11ZTTPS: T1222, T1060, T1112, T1005,...
Malware Analysis – djvu – a1a707c217336e4ae154a23f36f3608d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: a1a707c217336e4ae154a23f36f3608dSHA1: 23e83155a5741a21cfae3f635ba964f308b2da8eANALYSIS DATE: 2022-10-05T20:31:27ZTTPS: T1130, T1112, T1102,...
Cobalt Stike Beacon Detected – 143[.]110[.]144[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]188[.]232:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]29[.]162:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – fec683cf03741607291f6c6b8022c98c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fec683cf03741607291f6c6b8022c98cSHA1: 18a49af627edf179525029421e11209940eae738ANALYSIS DATE: 2022-10-05T22:02:26ZTTPS: T1012, T1005, T1081, T1060,...
Malware Analysis – smokeloader –
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: SHA1: ANALYSIS DATE: 2022-10-05T21:48:24ZTTPS: T1112, T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – smokeloader – 0b28c768b2688d0b845c6cc8fd1c0c0d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0b28c768b2688d0b845c6cc8fd1c0c0dSHA1: 9c90b3b6675075e7e36199f9ece3fd4d8231b810ANALYSIS DATE: 2022-10-05T21:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 0b28c768b2688d0b845c6cc8fd1c0c0d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0b28c768b2688d0b845c6cc8fd1c0c0dSHA1: 9c90b3b6675075e7e36199f9ece3fd4d8231b810ANALYSIS DATE: 2022-10-05T21:43:30ZTTPS:...
Malware Analysis – djvu – a485514c993967e9b55c4dcff24e9eea
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a485514c993967e9b55c4dcff24e9eeaSHA1: 7c3e4da9fdbef9ef564457e7b715bd78051b85e2ANALYSIS DATE: 2022-10-05T22:05:41ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – smokeloader – fed15979d927202175a67f39a2de5b73
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fed15979d927202175a67f39a2de5b73SHA1: 541da8999a0f81a12122344eeafe3b030a09a4abANALYSIS DATE: 2022-10-05T22:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 63c01caec4e90ba172267c966f717737
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 63c01caec4e90ba172267c966f717737SHA1: cc53db13dedd5b2ccecfd8e726f07af298496173ANALYSIS DATE: 2022-10-05T22:44:44ZTTPS: T1053, T1005, T1081, T1222,...
Malware Analysis – djvu – fed15979d927202175a67f39a2de5b73
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:1681, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: fed15979d927202175a67f39a2de5b73SHA1: 541da8999a0f81a12122344eeafe3b030a09a4abANALYSIS DATE:...
How Water Labbu Exploits Electron-Based Applications
In the second part of our Water Labbu blog series, we explore how the threat actor exploits Electron-based applications using...
New Maggie malware already infected over 250 Microsoft SQL servers
Hundreds of Microsoft SQL servers all over the world have been infected with a new piece of malware tracked as Maggie....
Malware Analysis – smokeloader – fbb043bd8741a259448382485bd29dd6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fbb043bd8741a259448382485bd29dd6SHA1: 521882d7a76d6496f800bf5e652e5bd5c07ab1f8ANALYSIS DATE: 2022-10-05T17:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – ffcfc1526b2540403e83ffb80c1274a9
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 4db342e59e4063a33e39bf2922746104
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 4db342e59e4063a33e39bf2922746104SHA1: 0f7cb769a3037816003d7ee2e12cc033bd0a4a6fANALYSIS DATE: 2022-10-05T15:01:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 95503e66b8b02be76b487665cd22127e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95503e66b8b02be76b487665cd22127eSHA1: aa950f5da6313eea5b765e68ba5842316f7c31eaANALYSIS DATE: 2022-10-05T14:24:31ZTTPS: T1060, T1112, T1222, T1053,...
