Cobalt Stike Beacon Detected – 43[.]136[.]14[.]250:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 124[.]71[.]84[.]65:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]155[.]75[.]235:8800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]206[.]93[.]139:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]149[.]200[.]79:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]1[.]31:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 85[.]209[.]135[.]74:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of April 24, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Fuzztruction – Prototype Of A Fuzzer That Does Not Directly Mutate Inputs (As Most Fuzzers Do) But Instead Uses A So-Called Generator Application To Produce An Input For Our Fuzzing Target
Fuzztruction is an academic prototype of a fuzzer that does not directly mutate inputs (as most fuzzers do) but instead...
Malware Analysis – amadey – 7336d7a5e81c0e607764b7adc1e5abfc
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, ransomware, stealer, trojanMD5: 7336d7a5e81c0e607764b7adc1e5abfcSHA1: 7240aceb3ef31f84c8ff60b1fb3be0b73349c51eANALYSIS DATE:...
Malware Analysis – djvu – c260965a67461ea6ccc8e7e7b9ebe9e7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: c260965a67461ea6ccc8e7e7b9ebe9e7SHA1: dd208e0ea9a2c1eaf7d8e9221e00b48fdeb4943fANALYSIS DATE: 2023-05-06T15:22:19ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – evasion – 4873dc59b8d3cdfb355eb0f383f20fb8
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 4873dc59b8d3cdfb355eb0f383f20fb8SHA1: 88f763d6fb7055eaa06603bd1822913ff3ea084eANALYSIS DATE: 2023-05-06T17:00:41ZTTPS: T1082, T1491, T1112, T1102, T1012, T1004, T1120 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – c6152f849df9ab5a7b8bdda6c1e1301f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, stealer, trojanMD5: c6152f849df9ab5a7b8bdda6c1e1301fSHA1: 3ae29eab58c00631d1d2ec748b18e0e0a4109c65ANALYSIS...
Malware Analysis – – 230feb2a0c5a06cdd5607974b9d0917e
Score: 1 MALWARE FAMILY: TAGS:MD5: 230feb2a0c5a06cdd5607974b9d0917eSHA1: b5535c2d02a02e92afd04d4cf75a5715c1aa34c1ANALYSIS DATE: 2023-05-06T16:01:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 2e6f10f97405a4ab7fd2b40c83db5db4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 2e6f10f97405a4ab7fd2b40c83db5db4SHA1: 556dab406953a93b017929ab216d18b1b199bb3aANALYSIS DATE: 2023-05-06T16:54:55ZTTPS: T1053, T1012, T1082, T1005,...
Medusa Locker Ransomware Victim: Sonda (Duplicate with update)
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Dragon Breath APT Group Using Double-Clean-App Technique to Target Gambling Industry
An advanced persistent threat (APT) actor known as Dragon Breath has been observed adding new layers of complexity to its...
Cobalt Stike Beacon Detected – 121[.]40[.]127[.]134:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]247[.]9[.]221:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]165[.]220:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 134[.]122[.]102[.]8:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]40[.]249[.]105:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]38[.]0[.]217:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]38[.]0[.]217:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
