CISA: Oracle Releases Security Updates
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
Security
CISA: CISA to Continue and Enhance U.K.’s Logging Made Easy Tool
CISA to Continue and Enhance U.K.’s Logging Made Easy Tool CISA has announced plans to continue and enhance the Logging...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on April 20, 2023. These...
CISA: CISA Releases Two SBOM Documents
CISA Releases Two SBOM Documents Today, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM...
CISA: Abuse of the Service Location Protocol May Lead to DoS Attacks
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on April 25, 2023. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA: VMware Releases Security Update for Aria Operations for Logs
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
auditpolCIS – CIS Benchmark Testing Of Windows SIEM Configuration
CIS Benchmark testing of Windows SIEM configuration This is an application for testing the configuration of Windows Audit Policy settings...
CISA: Abuse of the Service Location Protocol May Lead to DoS Attacks
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
Malware Analysis – evasion – 495c2a34d4447df001099893059774f6
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealerMD5: 495c2a34d4447df001099893059774f6SHA1: bf7c9c05ae10ffaab5325c434705b33384ddf2b2ANALYSIS DATE: 2023-04-25T15:17:13ZTTPS: T1490, T1060, T1112, T1031, T1562, T1489, T1082,...
Malware Analysis – evasion – c50a968d1c6351e9e087a56b1e5a1acd
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealerMD5: c50a968d1c6351e9e087a56b1e5a1acdSHA1: d9c4742a26bf41c5009f2e56f53ae9fab931a5b1ANALYSIS DATE: 2023-04-25T15:17:13ZTTPS: T1490, T1005, T1081, T1060, T1112, T1031, T1562,...
Malware Analysis – evasion – 469eb4d876c8bd2093e47d2474fbc59b
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, upxMD5: 469eb4d876c8bd2093e47d2474fbc59bSHA1: 0ff84a77d24839137002c56e9ff60c7f92080ca8ANALYSIS DATE: 2023-04-25T15:17:13ZTTPS: T1490, T1082, T1005, T1081, T1060, T1112,...
Malware Analysis – evasion – de96342270a559433babd9a496b0e7a8
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealerMD5: de96342270a559433babd9a496b0e7a8SHA1: 061d614f75e29cc48fe846e06380ee44752e432fANALYSIS DATE: 2023-04-25T15:50:52ZTTPS: T1490, T1060, T1112, T1031, T1562, T1489, T1082,...
Malware Analysis – djvu – f60e6578aa0bb267266b0f72fd6ec284
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: f60e6578aa0bb267266b0f72fd6ec284SHA1: 5a9ce528a2294269c403e6f4e98d27fd05bc565fANALYSIS DATE: 2023-04-25T15:19:23ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – evasion – 74dfb9ff18eb2dcea85dd97d01f96702
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, upxMD5: 74dfb9ff18eb2dcea85dd97d01f96702SHA1: e6c134f0cb8f2bdf2255d06ef5720c314c03837fANALYSIS DATE: 2023-04-25T15:17:13ZTTPS: T1490, T1060, T1112, T1031, T1562, T1489,...
Malware Analysis – amadey – fd5168a3d3adb20b0eedfd5f43ee3626
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:lumma, family:smokeloader, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:6908ab4fa5f20120a1d1ab0aab96b784, botnet:acfe5a66e11e3bf64369ac07af193354, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware,...
Malware Analysis – amadey – cd1d75b9096fd3edc5e1fe3637fb5890
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:lumma, family:smokeloader, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:6908ab4fa5f20120a1d1ab0aab96b784, botnet:acfe5a66e11e3bf64369ac07af193354, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware,...
Malware Analysis – ransomware – 3ae8e35691af3e50ff3f56d300c11ecd
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 3ae8e35691af3e50ff3f56d300c11ecdSHA1: 467603040077cb018371380adc60bbc615120685ANALYSIS DATE: 2023-04-25T16:28:40ZTTPS: T1158, T1082, T1112, T1491 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – amadey – 47d48d432cffa139836800a6f9f2a831
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:lumma, family:smokeloader, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:acfe5a66e11e3bf64369ac07af193354, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer,...
Malware Analysis – djvu – 5bf10b503a886162343a3e3511fc07d8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 5bf10b503a886162343a3e3511fc07d8SHA1: fa14795c6e684c472b14a00e8586a811552cd24cANALYSIS DATE: 2023-04-25T17:04:02ZTTPS: T1060, T1112, T1053, T1012,...
Malware Analysis – ransomware – 450356b1127c0b8ec92d738f4793eb84
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 450356b1127c0b8ec92d738f4793eb84SHA1: 8c2e8c2e814b47a67896cbca556a80f1b8d266d7ANALYSIS DATE: 2023-04-25T17:26:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – bcbf0f9f46da15d8d8237c6af1d7034c
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: bcbf0f9f46da15d8d8237c6af1d7034cSHA1: 46dcd2bba94e5d54a430af5133c97dbdd75612d1ANALYSIS DATE: 2023-04-25T17:26:53ZTTPS: T1082, T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – fb01fde5df1cb1a7cf4328fed8c56c25
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: fb01fde5df1cb1a7cf4328fed8c56c25SHA1: 35e0e57e39e6048d3c3568c000a02f0c66826a38ANALYSIS DATE: 2023-04-25T17:25:38ZTTPS: T1222, T1082, T1053, T1130, T1112,...
