Lazarus APT uses fake cryptocurrency apps to spread AppleJeus Malware
The North Korea-linked Lazarus APT spreads fake cryptocurrency apps under the fake brand BloxHolder to install the AppleJeus malware. Volexity...
Security
Cobalt Stike Beacon Detected – 43[.]139[.]69[.]104:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]127[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Law enforcement agencies can extract data from thousands of cars’ infotainment systems
Law enforcement agencies can extract data from the infotainment systems of thousands of different car models. Data managed by infotainment...
Malware Analysis – wannacry – 84505f29fde00a6200617e8485d21bd7
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 84505f29fde00a6200617e8485d21bd7SHA1: b57d66060afb3b7b0d69901ce3f4c174e7beadb6ANALYSIS DATE: 2022-12-04T15:52:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – dcrat – 9f698fc266aff6e94205f920a615106f
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 9f698fc266aff6e94205f920a615106fSHA1:...
Malware Analysis – djvu – 7735257079f68c14085172a039be19c1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 7735257079f68c14085172a039be19c1SHA1: d309f77684d82dd81896f46a41ebe9882352e459ANALYSIS DATE: 2022-12-04T15:47:11ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – venus – 07f5fbcb96179acffab2638392d08fb8
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, evasion, persistence, ransomwareMD5: 07f5fbcb96179acffab2638392d08fb8SHA1: 22d84ca8e620ef5fc0027b3e06876d1a04d10406ANALYSIS DATE: 2022-12-04T15:56:17ZTTPS: T1060, T1112, T1012, T1120, T1082, T1018, T1031 ScoreMeaningExample10Known...
Malware Analysis – smokeloader – cce955acd6c57914fac564a5421b6f43
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: cce955acd6c57914fac564a5421b6f43SHA1: 80847cd8e71b5e63679fee62cd0d8bd75e56d034ANALYSIS DATE: 2022-12-04T16:20:15ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – a1216bce2dcf7c35dfe1ab2119579211
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: a1216bce2dcf7c35dfe1ab2119579211SHA1: 00805f940cb220ab8045059236b11fb53fc5f3cdANALYSIS DATE: 2022-12-04T17:27:46ZTTPS: T1222, T1012, T1082, T1053, T1060,...
Malware Analysis – smokeloader – 60130c36350c6b3d646ec4f3b83c12e2
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 60130c36350c6b3d646ec4f3b83c12e2SHA1: 6e22ee16e8e6bed7f75cfee657352650edcccbd8ANALYSIS DATE: 2022-12-04T17:14:38ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
US DHS Cyber Safety Board will review Lapsus$ gang’s operations
US DHS Cyber Safety Review Board will review attacks linked to the Lapsus$ extortion gang that hit multiple high-profile companies....
Neton – Tool For Getting Information From Internet Connected Sandboxes
Neton is a tool for getting information from Internet connected sandboxes. It is composed by an agent and a web...
Malware Analysis – ransomware – 1c6e7fbaddc1a16bccd1a252105f07bf
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 1c6e7fbaddc1a16bccd1a252105f07bfSHA1: 4409f9b401979a61850b9d37129476f00189902bANALYSIS DATE: 2022-12-02T01:47:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 5bbd9c831523b2e5dfa65171a64357d0
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 5bbd9c831523b2e5dfa65171a64357d0SHA1: e7628e660fc27f4c9bff681d9329b184e1ef7190ANALYSIS DATE: 2022-12-02T01:47:07ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 43[.]154[.]112[.]12:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 110[.]40[.]214[.]45:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]175[.]221[.]48:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]146[.]158[.]251:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – e49004538555fc8d439ca0d88c85a3f8
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: e49004538555fc8d439ca0d88c85a3f8SHA1: f11cbabd6e66481677b8c7f2ba85741d41012bccANALYSIS DATE: 2022-12-02T01:47:18ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 2b9e7c1928e8ae67684942d50dd88461
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 2b9e7c1928e8ae67684942d50dd88461SHA1: 87e9f3c7bc67b317da37fbfd840fdaa900e543f2ANALYSIS DATE: 2022-12-02T01:47:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 602649de342594e8a55b68406d20c655
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 602649de342594e8a55b68406d20c655SHA1: ab042860e33f17c64b7a9aa63633397b097fdaaaANALYSIS DATE: 2022-12-02T01:47:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 191e418994c948b9e5bf4a438dd218d0
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 191e418994c948b9e5bf4a438dd218d0SHA1: ce87ab69fde61d6222408814278811fa3827bf0dANALYSIS DATE: 2022-12-02T01:47:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – dab11b8dbfb0c1cb3f0fd3df308d8e94
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: dab11b8dbfb0c1cb3f0fd3df308d8e94SHA1: e5d79c2a355f802591641f4662c5d9671eb9ba48ANALYSIS DATE: 2022-12-02T01:47:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
