Cobalt Stike Beacon Detected – 18[.]176[.]136[.]197:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 43[.]139[.]187[.]23:2095
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]168[.]128[.]144:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 642b210cce1c89ac83f1f9ba777f49a1
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 642b210cce1c89ac83f1f9ba777f49a1SHA1: bd5b60a4ff9443b6551028d939a60085942f8907ANALYSIS DATE: 2023-01-26T21:08:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – e82832cee58d74893e194151ba796f7d
Score: 6 MALWARE FAMILY: TAGS:MD5: e82832cee58d74893e194151ba796f7dSHA1: 9febbd7d5f50a1e9876c48ac3cbe291ac1c71673ANALYSIS DATE: 2023-01-26T22:16:05ZTTPS: T1112, T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – smokeloader – a20c37f0c60ef053496b556da096cea7
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a20c37f0c60ef053496b556da096cea7SHA1: f1190e42f369e1f83a12c1a2f88de2c094fe947fANALYSIS DATE: 2023-01-26T22:36:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – phobos – b3c9270aea86b5cccc82c0afeff6460a
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: b3c9270aea86b5cccc82c0afeff6460aSHA1: eb75b5f2207c576d72c17a85fef939fd657ecaaeANALYSIS DATE: 2023-01-26T23:14:08ZTTPS: T1490, T1059, T1107, T1060, T1112, T1031,...
Malware Analysis – djvu – 38fcf041ee6209342522ee5e9cc87bf5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 38fcf041ee6209342522ee5e9cc87bf5SHA1: 9dd0f6e3460dab3d2183c7935f4a2034820b00d0ANALYSIS DATE: 2023-01-26T23:31:22ZTTPS: T1082, T1053, T1005, T1081,...
Malware Analysis – smokeloader – 55ce7bedbb562c58727b47abef769f27
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 55ce7bedbb562c58727b47abef769f27SHA1: d2625eca492c2b43189febfb16c1ecbda5be6fdaANALYSIS DATE: 2023-01-26T23:33:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 00c34bd8bd72d2efdd70fe6737687246
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 00c34bd8bd72d2efdd70fe6737687246SHA1: 165c93db4ef01a071281c7b334a8bd940d53d45fANALYSIS DATE: 2023-01-26T23:57:02ZTTPS: T1490, T1060, T1112, T1031, T1562, T1489 ScoreMeaningExample10Known badA malware...
CISA: JCDC Announces 2023 Planning Agenda
JCDC Announces 2023 Planning Agenda Today, the Joint Cyber Defense Collaborative (JCDC) announced its 2023 Planning Agenda. This release marks...
Malware Analysis – discovery – 1800fe2f1abdc23120b03b7b3630fa1d
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 1800fe2f1abdc23120b03b7b3630fa1dSHA1: 69f87b010a46c77e3aa93507e422f7781922b937ANALYSIS DATE: 2023-01-26T15:08:24ZTTPS: T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – discovery – e9aa3add39a7cd937c7f2886602ce9b1
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: e9aa3add39a7cd937c7f2886602ce9b1SHA1: 7f161fe9e9693238ae82e8c07600716e6959b740ANALYSIS DATE: 2023-01-26T16:02:00ZTTPS: T1082, T1012, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – ff811751380e00d1e0f9a43645c6155e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: ff811751380e00d1e0f9a43645c6155eSHA1: 997b34aa9abd66c83ef06e49032385dc53e55338ANALYSIS DATE: 2023-01-26T15:03:14ZTTPS: T1012,...
Malware Analysis – djvu – 802c3dd045b2277aa0846689e152892d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 802c3dd045b2277aa0846689e152892dSHA1: ea895467c292406be2472debbaec4685d29f8d6dANALYSIS DATE: 2023-01-26T16:11:32ZTTPS:...
Malware Analysis – djvu – ce2daf9e687edbeb4d78d41abbab4736
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ce2daf9e687edbeb4d78d41abbab4736SHA1: ab9a7fd9b64a7b28fe3dfc3a04eb3b057dfdef33ANALYSIS DATE: 2023-01-26T16:40:34ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – gafgyt – 90276982cc921f646f74f8310ef8cd6a
Score: 10 MALWARE FAMILY: gafgytTAGS:family:gafgyt, family:plugx, family:redline, botnet, discovery, exploit, infostealer, persistence, trojanMD5: 90276982cc921f646f74f8310ef8cd6aSHA1: 37d5ff4e70485bbcc6e4ef6fa08d3b7839012d0fANALYSIS DATE: 2023-01-26T16:47:40ZTTPS: T1012, T1082, T1130,...
Malware Analysis – smokeloader – 9ea4f8811d333a11401a102e8bc84c78
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9ea4f8811d333a11401a102e8bc84c78SHA1: b246b1aa87de2a8fa7770371ff53ee3e0e4f449dANALYSIS DATE: 2023-01-26T16:36:10ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – d37b8714a55b734644d3f88ecb6da612
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: d37b8714a55b734644d3f88ecb6da612SHA1: 67fd5834a7f0819c2ba06b4ed21c9a0876296c58ANALYSIS DATE: 2023-01-26T17:40:22ZTTPS:...
Malware Analysis – joker – dea8911e2f66aad91aaa2c1afb40c697
Score: 10 MALWARE FAMILY: jokerTAGS:family:joker, evasion, infostealer, ransomware, trojanMD5: dea8911e2f66aad91aaa2c1afb40c697SHA1: 6aed964342314fc7fd5c0c3cb6f2ef1814472916ANALYSIS DATE: 2023-01-26T17:36:03ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 9a0ea0a71406b61a6ec0bf4408f5898e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 9a0ea0a71406b61a6ec0bf4408f5898eSHA1: 5c893181fb54cbd9db3b0b6af8cf6fe07df80c88ANALYSIS DATE: 2023-01-26T17:32:34ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – discovery – 6b43663e875f7f6cbb40fe72cae01b9b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 6b43663e875f7f6cbb40fe72cae01b9bSHA1: 1c32ca96df9b3ebe1a1f163baf1999ce564ae438ANALYSIS DATE: 2023-01-26T17:51:39ZTTPS: T1082, T1060, T1112, T1012, T1130 ScoreMeaningExample10Known badA malware family...
GUAC – Aggregates Software Security Metadata Into A High Fidelity Graph Database
Note: GUAC is under active development - if you are interested in contributing, please look at contributor guide and the...
Malware Analysis – smokeloader – 5138399605906d20f0d997f76a455305
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5138399605906d20f0d997f76a455305SHA1: 1c3d6a4e2e3c06654cd6ce9a63df125285cc39ecANALYSIS DATE: 2023-01-26T09:23:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
