Fingerprintx – Standalone Utility For Service Discovery On Open Ports!
fingerprintx is a utility similar to httpx that also supports fingerprinting services like as RDP, SSH, MySQL, PostgreSQL, Kafka, etc....
threatintel
Waf-Bypass – Check Your WAF Before An Attacker Does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False...
MSI Dump – A Tool That Analyzes Malicious MSI Installation Packages, Extracts Files, Streams, Binary Data And Incorporates YARA Scanner
MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner....
Decider – A Web Application That Assists Network Defenders, Analysts, And Researcher In The Process Of Mapping Adversary Behaviors To The MITRE ATT&CK Framework
What is it? The Short A web application that assists network defenders, analysts, and researchers in the process of mapping...
CMLoot – Find Interesting Files Stored On (System Center) Configuration Manager (SCCM/CM) SMB Shares
CMLoot was created to easily find interesting files stored on System Center Configuration Manager (SCCM/CM) SMB shares. The shares are...
LockBit 3.0 Ransomware Victim: p-and-r[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Fake ransomware gang targets U.S. orgs with empty data leak threats
Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data...
DISH slapped with multiple lawsuits after ransomware cyber attack
Dish Network has been slapped with multiple class action lawsuits after it suffered a ransomware incident that was behind the company's multi-day...
US-CERT Vulnerability Summary for the Week of March 20, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Malware Analysis – – b63528fb75da0e9e5ea042dd8608610a
Score: 1 MALWARE FAMILY: TAGS:MD5: b63528fb75da0e9e5ea042dd8608610aSHA1: 86357bf32d32aaab48d28d331a0798aa377ba258ANALYSIS DATE: 2023-04-01T15:49:47ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 8c17dca7ea605fc37a624331ac72e65e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5df88deb5dde677ba658b77ad5f60248, discovery, persistence, ransomware, spyware, stealerMD5: 8c17dca7ea605fc37a624331ac72e65eSHA1: 71ca72354c3d42866992a9b6620067cf898909eeANALYSIS DATE: 2023-04-01T15:01:35ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – evasion – e0db5819c325375bfde35df5b1463e51
Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: e0db5819c325375bfde35df5b1463e51SHA1: 265663bb1ce19366ea1695f40d9e028ddde14528ANALYSIS DATE: 2023-04-01T15:36:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – redline – 4265a75ed0df6c5675761d1e1d2a5e26
Score: 10 MALWARE FAMILY: redlineTAGS:family:redline, discovery, infostealer, persistence, ransomware, spyware, stealer, upxMD5: 4265a75ed0df6c5675761d1e1d2a5e26SHA1: 345bab81cfe571f9505c52ca001dc015c66b09bdANALYSIS DATE: 2023-04-01T15:29:17ZTTPS: T1060, T1005, T1081, T1112,...
Malware Analysis – evasion – fd31bb7ea1ad81b4570011952008d009
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: fd31bb7ea1ad81b4570011952008d009SHA1: 2ab1014b079df5c4507d69d41b92fbc574156811ANALYSIS DATE: 2023-04-01T15:53:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – c84ad96950dc9a5ccab4ad204c46e359
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5df88deb5dde677ba658b77ad5f60248, discovery, persistence, ransomware, spyware, stealerMD5: c84ad96950dc9a5ccab4ad204c46e359SHA1: d4672aad001462d79ec1719faa87593a26383926ANALYSIS DATE: 2023-04-01T16:08:42ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – cf9172551150d9e54626a48bc4d7a196
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5df88deb5dde677ba658b77ad5f60248, discovery, persistence, ransomware, spyware, stealerMD5: cf9172551150d9e54626a48bc4d7a196SHA1: 21f10d5aa693242d354a49a4b55f99ccbc9c3c82ANALYSIS DATE: 2023-04-01T16:02:19ZTTPS: T1060, T1112, T1082, T1053,...
Malware Analysis – smokeloader – 98c02acb0401448098dc6c09911c7053
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 98c02acb0401448098dc6c09911c7053SHA1: 5611794292c3214d0ffb0491c23377e866ccbd46ANALYSIS DATE: 2023-04-01T16:10:41ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – f1a4fadf22886ea65120de4d9a227d78
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5df88deb5dde677ba658b77ad5f60248, discovery, persistence, ransomware, spyware, stealerMD5: f1a4fadf22886ea65120de4d9a227d78SHA1: f6fa9b1c2010638a4a939774d2b0090d03e08d8eANALYSIS DATE: 2023-04-01T16:40:50ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – evasion – 807740e3472484d420667e6c0fcfb515
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 807740e3472484d420667e6c0fcfb515SHA1: 9df328dee54e0865376efc4ab90b7cd419c1784cANALYSIS DATE: 2023-04-01T16:28:46ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – brand:microsoft – 0a1d0cb632a7f7cde057b8c11c1248a2
Score: 10 MALWARE FAMILY: brand:microsoftTAGS:brand:microsoft, evasion, persistence, phishing, ransomware, trojanMD5: 0a1d0cb632a7f7cde057b8c11c1248a2SHA1: 651caf0aa2637d0b56411f1679eb68f43a7b00b2ANALYSIS DATE: 2023-04-01T16:19:08ZTTPS: T1012, T1120, T1082, T1088, T1089, T1112,...
Malware Analysis – evasion – 9871e57a53d3a334aca306c4321a7d07
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9871e57a53d3a334aca306c4321a7d07SHA1: 5cc48c673d0205a1335f28e687d4b66b5b7d8b97ANALYSIS DATE: 2023-04-01T16:31:59ZTTPS: T1012, T1120, T1082, T1491, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – 660708319a500f1865fa9d2fadfa712d
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 660708319a500f1865fa9d2fadfa712dSHA1: b2ae3aef17095ab26410e0f1792a379a4a2966f8ANALYSIS DATE: 2023-04-01T16:52:30ZTTPS: T1004, T1112, T1082, T1491, T1088, T1089 ScoreMeaningExample10Known badA...
Malware Analysis – brand:pubg – f7b8cff13de0de32fa0f438c3aab7eae
Score: 10 MALWARE FAMILY: brand:pubgTAGS:brand:pubg, evasion, phishing, ransomwareMD5: f7b8cff13de0de32fa0f438c3aab7eaeSHA1: a6c449f9a3e1bce13c54159e9575aa66c4462b4eANALYSIS DATE: 2023-04-01T16:46:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 61804db8a814f17f5cdc8243e6c609cf
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5df88deb5dde677ba658b77ad5f60248, discovery, persistence, ransomware, spyware, stealerMD5: 61804db8a814f17f5cdc8243e6c609cfSHA1: 815b35ca9dba75b0f8906b8e838599c757c3ab77ANALYSIS DATE: 2023-04-01T16:54:11ZTTPS: T1082, T1012, T1053, T1005,...
