CISA: CISA Releases SCuBA TRA and eVRF Guidance Documents
CISA Releases SCuBA TRA and eVRF Guidance Documents CISA has released several documents as part of the Secure Cloud Business...
Security
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on June 27, 2023. These...
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: VMware Releases Security Update for vCenter Server and Cloud Foundation
VMware Releases Security Update for vCenter Server and Cloud Foundation VMware has released a security update to address multiple memory...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on June 29, 2023. These...
CISA: DoS and DDoS Attacks against Multiple Sectors
DoS and DDoS Attacks against Multiple Sectors CISA is aware of open-source reporting of targeted denial-of-service (DoS) and distributed denial-of-service...
CISA: 2023 CWE Top 25 Most Dangerous Software Weaknesses
2023 CWE Top 25 Most Dangerous Software Weaknesses The Homeland Security Systems Engineering and Development Institute, sponsored by the Department...
CISA: CISA and NSA Release Joint Guidance on Defending Continuous Integration/Continuous Delivery (CI/CD) Environments
CISA and NSA Release Joint Guidance on Defending Continuous Integration/Continuous Delivery (CI/CD) Environments Today, CISA, together with the National Security...
CISA: CISA Adds Eight Known Exploited Vulnerabilities to Catalog
CISA Adds Eight Known Exploited Vulnerabilities to Catalog CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
Cobalt Stike Beacon Detected – 35[.]78[.]65[.]63:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 64[.]227[.]71[.]13:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 117[.]50[.]174[.]131:8082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 34[.]205[.]142[.]33:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 36[.]24[.]95[.]112:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]105[.]53[.]99:7002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 69[.]165[.]70[.]101:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]211[.]32[.]231:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]220[.]77[.]124:2052
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]93[.]102[.]149:789
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 11cb54336f76db8ec3ce3e92e25cb981
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 11cb54336f76db8ec3ce3e92e25cb981SHA1: 3b25852585996aec5d3f1048330a6a44e0854410ANALYSIS DATE: 2023-07-01T15:30:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – smokeloader – 5e146bf3b3d580caa050a936a90c7a6a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5e146bf3b3d580caa050a936a90c7a6aSHA1: c59af9c39de478eb2314265d2baccad65542c744ANALYSIS DATE: 2023-07-01T15:22:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 3c4f9c2e1f8493374e7d153b75bb70e8
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 3c4f9c2e1f8493374e7d153b75bb70e8SHA1: e413150c124bb5e7504182dd1d0eed1f0c5bdbd4ANALYSIS DATE: 2023-07-01T15:42:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – f04f123ee8df947810d49dad53472919
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomwareMD5: f04f123ee8df947810d49dad53472919SHA1: b6fca143a3997493fd02cb6a351722da78d9c830ANALYSIS DATE: 2023-07-01T17:16:02ZTTPS: T1031, T1562, T1489, T1107, T1490, T1222, T1012, T1120, T1082...
Malware Analysis – – e25e39744775a8a636866cc7bc446640
Score: 7 MALWARE FAMILY: TAGS:MD5: e25e39744775a8a636866cc7bc446640SHA1: 9258197f2960a19f6412861fcdee2eb65ea33704ANALYSIS DATE: 2023-07-01T16:46:59ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
