Cobalt Stike Beacon Detected – 185[.]175[.]156[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Malware Analysis – persistence – 425cbeecc22af1cbd3683702bad47d2b
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 425cbeecc22af1cbd3683702bad47d2bSHA1: d9df389bf4f5699414ae265bab820d16c97153f4ANALYSIS DATE: 2023-01-23T21:20:34ZTTPS: T1060, T1130, T1112, T1012, T1082, T1120 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – c93dffef8975b746c23b3dfa89fab68d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: c93dffef8975b746c23b3dfa89fab68dSHA1: 526e90755a469488a6fdfc90158d7c23a3f8db94ANALYSIS DATE: 2023-01-23T21:23:26ZTTPS: T1222, T1005, T1081, T1082,...
Malware Analysis – djvu – cc426856236596a24223d23bcb84d8c8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: cc426856236596a24223d23bcb84d8c8SHA1: 03c225a58255b94fd7917f304af3a9bc172ee681ANALYSIS DATE: 2023-01-23T21:03:36ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – asyncrat – 8b14bf467df11d832cfbd95c3c2a8ee9
Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, ransomware, ratMD5: 8b14bf467df11d832cfbd95c3c2a8ee9SHA1: 98372efcfe106531e8cd4e3acb5372865f49ee73ANALYSIS DATE: 2023-01-23T23:31:10ZTTPS: T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – lockbit – 01ccead2e9497ce04ab0c2531320224d
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 01ccead2e9497ce04ab0c2531320224dSHA1: 9b7ebc4d8f97b0e7463a382f3b748a4be48a06a1ANALYSIS DATE: 2023-01-23T21:24:54ZTTPS: T1490, T1059, T1107, T1082,...
Malware Analysis – djvu – 1b2d5ea242f2354691c62b680893df7a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1b2d5ea242f2354691c62b680893df7aSHA1: 77684b9079f760e75bbe3aa31d264150847e5de0ANALYSIS DATE: 2023-01-23T23:00:30ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – ransomware – ddbb68a048aa1dc2d70def4ed51d7f72
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ddbb68a048aa1dc2d70def4ed51d7f72SHA1: 9ecd8e12cf00616b05cdb8103eb44af9bec6ffe2ANALYSIS DATE: 2023-01-23T23:30:19ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Cobalt Stike Beacon Detected – 45[.]61[.]186[.]9:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]19[.]155[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]159[.]43[.]58:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
SQLiDetector – Helps You To Detect SQL Injection “Error Based” By Sending Multiple Requests With 14 Payloads And Checking For 152 Regex Patterns For Different Databases
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests...
Cobalt Stike Beacon Detected – 49[.]232[.]21[.]201:9091
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]215[.]85[.]196:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]146[.]158[.]251:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]29[.]82[.]40:8053
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]60[.]155[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Popeye – A Kubernetes Cluster Resource Sanitizer
Popeye - A Kubernetes Cluster Sanitizer Popeye is a utility that scans live Kubernetes cluster and reports potential issues with...
Cobalt Stike Beacon Detected – 18[.]192[.]181[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – 5353103470722f4778485e5874392a0a
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 5353103470722f4778485e5874392a0aSHA1: 596b5989ba88f6a3aa7b4bdd97c8367526291575ANALYSIS DATE: 2023-01-22T09:43:57ZTTPS: T1222, T1060, T1112, T1012, T1120, T1082, T1158 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 651066b4edb5d4aaab16a5083645d9db
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 651066b4edb5d4aaab16a5083645d9dbSHA1: 43039594af889953321a09b6579a0a26798e157dANALYSIS DATE: 2023-01-22T09:04:59ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – 1584bcd7634fb887f9cfa961bc759828
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1584bcd7634fb887f9cfa961bc759828SHA1: 4e6832807c3303cfbde71c9a88f487a7cbe9b76eANALYSIS DATE: 2023-01-22T09:50:00ZTTPS: T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – 8481d406605697e84dacab3bb8f0644a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 8481d406605697e84dacab3bb8f0644aSHA1: ddd50a4c59f2324a8d5f8d890d0c0728e7062ad2ANALYSIS DATE: 2023-01-22T09:53:55ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – discovery – b7cdd21a7d0fabcd1ce4168972768842
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomware, spyware, stealerMD5: b7cdd21a7d0fabcd1ce4168972768842SHA1: 93f6c45b6d57c9ba9938e0466bbbb1c6d6d64620ANALYSIS DATE: 2023-01-22T10:41:49ZTTPS: T1082, T1060, T1112, T1012, T1120, T1005, T1081...
