Cobalt Stike Beacon Detected – 106[.]75[.]227[.]134:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 109[.]192[.]212[.]70:9001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]33[.]179[.]221:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]247[.]212:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – amadey – fd178725fc7ebd4257d17a823158bec5
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: fd178725fc7ebd4257d17a823158bec5SHA1: 81c0dcd1dc7a5936ace3c7036b00c499b54afd04ANALYSIS DATE:...
Malware Analysis – amadey – b0d836844b04e4a6f4b5ca87cb6ce63e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: b0d836844b04e4a6f4b5ca87cb6ce63eSHA1: 8d98770e78655f835711c6ec4c824b51615a6182ANALYSIS DATE:...
Malware Analysis – djvu – f37020074e448e23dc8752c70329907d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f37020074e448e23dc8752c70329907dSHA1: 6b6e63ed1f66e9fd987419c249b473b212170eb0ANALYSIS DATE: 2023-02-02T11:11:35ZTTPS: T1060, T1112, T1053, T1005,...
Malware Analysis – djvu – 7d0e275d70fd5a61b05f4280fdd787f5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 7d0e275d70fd5a61b05f4280fdd787f5SHA1: f7751017be5c626cfb3b48729e2a60ad4cf31fa2ANALYSIS DATE: 2023-02-02T11:53:59ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – smokeloader – c9afe5085553d1b7b388cc818b7b5a09
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c9afe5085553d1b7b388cc818b7b5a09SHA1: 425e3328364a93e49a8036bf3413134146e7e5a0ANALYSIS DATE: 2023-02-02T11:05:38ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Empire C2 Detected – 144[.]38[.]218[.]101:80
The Information provided at the time of posting was detected as "Empire C2". Depending on when you are viewing this...
Malware Analysis – – 59e7451acc5feed8d6a314297a970ad4
Score: 1 MALWARE FAMILY: TAGS:MD5: 59e7451acc5feed8d6a314297a970ad4SHA1: 920ae92c754e70364329123687b21bbd983ae57bANALYSIS DATE: 2023-02-01T21:12:01ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – amadey – 12b8a1f114a8b3e2ce261847cffef2db
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 12b8a1f114a8b3e2ce261847cffef2dbSHA1: 13165ab78229bddefb49036b15a641c0d898485eANALYSIS DATE:...
Malware Analysis – discovery – 3c9feef5f4ded10f5aebe2d8e06ddf17
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 3c9feef5f4ded10f5aebe2d8e06ddf17SHA1: c1974124faf157e7683cd110d0ca6319676eed4eANALYSIS DATE: 2023-02-01T22:24:43ZTTPS: T1082, T1057, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – discovery – d3add4ef9940f485a12da9e987771f32
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: d3add4ef9940f485a12da9e987771f32SHA1: 37870b8d6fc40baff80e30cd28fe1e4e01f471b8ANALYSIS DATE: 2023-02-01T22:30:19ZTTPS: T1082, T1012, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – amadey – 1fd5d23bab8f8f4073ca84e64593e277
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 1fd5d23bab8f8f4073ca84e64593e277SHA1: 63dc3ea29ba3b3887e4c03742c3f3894041c8312ANALYSIS DATE: 2023-02-01T21:15:58ZTTPS:...
Malware Analysis – discovery – d62342979412c311e9cda07fb7e31457
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: d62342979412c311e9cda07fb7e31457SHA1: 91019c22f1b2dfb3818af0364be37cd5c8dfec0cANALYSIS DATE: 2023-02-01T22:44:54ZTTPS: T1012, T1082, T1130, T1112, T1057 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – discovery – 6ac694ad2f3d2ca003102f6e842b2eaf
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, trojanMD5: 6ac694ad2f3d2ca003102f6e842b2eafSHA1: 1aefddc5e887434ab99057ae2c12cbf17bf3ce04ANALYSIS DATE: 2023-02-01T22:59:50ZTTPS: T1012, T1082, T1112, T1018, T1060 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – b8ccee89fe62647ffa515842a7fc372c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: b8ccee89fe62647ffa515842a7fc372cSHA1: ff05bc15583f196940c11908793a515b38ae9594ANALYSIS DATE: 2023-02-01T23:26:15ZTTPS: T1222, T1053, T1005, T1081,...
Malware Analysis – amadey – f9223ce10430ed989beb6315b8ef10ee
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: f9223ce10430ed989beb6315b8ef10eeSHA1: e743ca02767c216b72506488a1ebcea005009823ANALYSIS DATE: 2023-02-01T23:13:52ZTTPS:...
Malware Analysis – evasion – 0e6452fbace59927ee883faae2d82f52
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 0e6452fbace59927ee883faae2d82f52SHA1: 7c12fc18061ae904d9ac3b883e2cd8c2f4ea74c5ANALYSIS DATE: 2023-02-01T16:09:00ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 700c400a0fcb148eafe327b539bab0fc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 700c400a0fcb148eafe327b539bab0fcSHA1: 85d14338e6565a62c3b0deea58f321944751902eANALYSIS DATE: 2023-02-01T15:06:53ZTTPS:...
Malware Analysis – djvu – d8699aa29bad0a63e241a78d7fa7ed4d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d8699aa29bad0a63e241a78d7fa7ed4dSHA1: cb36472d80989e4b2c2996a180ba89099d561d1dANALYSIS DATE: 2023-02-01T15:02:05ZTTPS: T1082, T1005, T1081, T1012,...
CISA: VMware Releases Security Update for VMware vRealize Operations
VMware Releases Security Update for VMware vRealize Operations VMware released a security update that addresses a cross-site request forgery bypass...
Malware Analysis – djvu – 0f35d14f2fd868c2235e2ef87a341a77
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 0f35d14f2fd868c2235e2ef87a341a77SHA1: 7913ad5f3754c46b2a510e2973093cd289fc3ea9ANALYSIS DATE: 2023-02-01T16:44:26ZTTPS: T1005, T1081, T1060, T1112,...
