Cobalt Stike Beacon Detected – 162[.]19[.]155[.]49:8008
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 150[.]158[.]41[.]176:800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]121[.]8:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]68[.]138:5672
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]236[.]86[.]244:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – persistence – 5f77cb5129da0751684b33dd4348b842
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 5f77cb5129da0751684b33dd4348b842SHA1: 4585da0ff7a763be1a46d78134624f7cd13e6940ANALYSIS DATE: 2023-02-17T09:39:19ZTTPS: T1060, T1112, T1005, T1081, T1082, T1012, T1120 ScoreMeaningExample10Known...
Malware Analysis – djvu – e54ae4c8a68d9bb0b8e04bae12af7aa2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e54ae4c8a68d9bb0b8e04bae12af7aa2SHA1: e4add6a96dec78af50508a511154a7675d82cc34ANALYSIS DATE: 2023-02-17T10:44:41ZTTPS: T1060, T1112, T1005, T1081,...
Malware Analysis – djvu – 1ec53a299c766db9fb3b32427526bd0b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1ec53a299c766db9fb3b32427526bd0bSHA1: 3c57b013ae239b7fa9d329e9e57ac5e99d295996ANALYSIS DATE: 2023-02-17T10:21:25ZTTPS: T1060, T1112, T1222, T1012,...
Malware Analysis – smokeloader – 872424630248155787ee40b92d729795
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 872424630248155787ee40b92d729795SHA1: 35c615cffa793680d5c50acfdd3707cfc817c339ANALYSIS DATE: 2023-02-17T10:03:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 526a47fe8d9412f34715d5e7d076867e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 526a47fe8d9412f34715d5e7d076867eSHA1: ec884f0092138965ba915dc68dea00e9aed5d6bfANALYSIS DATE: 2023-02-17T10:00:16ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – djvu – e0963f1a683eec5923eb93f096246d92
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e0963f1a683eec5923eb93f096246d92SHA1: d3c47b231db6e7e5e34b5fabb382a655bcff22e0ANALYSIS DATE: 2023-02-17T11:08:45ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – djvu – 14667effb60e1be24d814d91d12ee5c1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 14667effb60e1be24d814d91d12ee5c1SHA1: 1c7105a70a057b8e0cdcd78dec66bcf11e5b7d79ANALYSIS DATE: 2023-02-17T11:10:58ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – 6b093576c42c0eb186769a4e6ee81400
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 6b093576c42c0eb186769a4e6ee81400SHA1: 14f30cac446218af606f9a03a3690f0ee17c79c0ANALYSIS DATE: 2023-02-17T10:51:22ZTTPS: T1060, T1112, T1222, T1082, T1012, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – smokeloader – 30824c41f87523365ea97bb45124e05b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 30824c41f87523365ea97bb45124e05bSHA1: 84f3006abb751f0e3f2379f82fb21192dff007a1ANALYSIS DATE: 2023-02-17T11:04:58ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
CISA: CISA Releases Fifteen Industrial Control Systems Advisories
CISA Releases Fifteen Industrial Control Systems Advisories CISA released fifteen (15) Industrial Control Systems (ICS) advisories on February 16, 2023....
Malware Analysis – ransomware – b7718f4a9760791f4123329c0320de16
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b7718f4a9760791f4123329c0320de16SHA1: f7b2bf4ae4161186442dc841363d616e479b1d2dANALYSIS DATE: 2023-02-16T03:11:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 000fb3406dffe4e4933612e9f7259c52
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 000fb3406dffe4e4933612e9f7259c52SHA1: c597b6898d40ea20a92a5c292d1400fa6434a9a9ANALYSIS DATE: 2023-02-16T03:30:01ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 1b0cb243ac3ee82f10ab7cc4a02109b7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:1001, botnet:19, backdoor, banker, clipper, collection, discovery, evasion, isfb, persistence,...
Malware Analysis – djvu – 12abe389cca03fa67190601574816b5a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:smokeloader, botnet:1001, backdoor, banker, discovery, isfb, persistence, ransomware, trojan, vmprotectMD5: 12abe389cca03fa67190601574816b5aSHA1: 00bc25d24abb479426e04ee7222f22dbe5b19f69ANALYSIS DATE: 2023-02-16T03:37:13ZTTPS:...
Malware Analysis – djvu – e5ae8001839ba54edbfec99076911622
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e5ae8001839ba54edbfec99076911622SHA1: 6792e2ecffa213cbde0f36afa4d43594c93b3e09ANALYSIS DATE: 2023-02-16T04:20:29ZTTPS: T1082, T1012, T1005, T1081,...
Malware Analysis – djvu – 051d5874bdc197f10e9db0668ebfb12b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 051d5874bdc197f10e9db0668ebfb12bSHA1: c30a61aa11e42b444b59d842596d88004f337116ANALYSIS DATE: 2023-02-16T04:30:33ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – djvu – b01a66a4ffdc6b95cd9c392a03ec43fa
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:rhadamanthys, family:smokeloader, botnet:1001, backdoor, banker, discovery, isfb, ransomware, spyware, stealer, trojan, vmprotectMD5: b01a66a4ffdc6b95cd9c392a03ec43faSHA1: ee76990db76f909aecf3692ff0586bdc1d3eec8cANALYSIS...
Malware Analysis – evasion – 59d1e6cf42825dec6bc1f7ea27dd5901
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 59d1e6cf42825dec6bc1f7ea27dd5901SHA1: 3949dfc0d598e87e1f51e0c4ead11058b6ed5993ANALYSIS DATE: 2023-02-16T05:14:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – d0c450199d3b304ae14673b5adebc79e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d0c450199d3b304ae14673b5adebc79eSHA1: bb0048e76a4dbbba54c4979e3ac3ecd2c3540e8bANALYSIS DATE: 2023-02-16T05:30:45ZTTPS: T1012, T1082, T1060, T1112,...
