nuvola – Tool To Dump And Perform Automatic And Manual Security Analysis On Aws Environments Configurations And Services
nuvola (with the lowercase n) is a tool to dump and perform automatic and manual security analysis on AWS environments...
threatintel
Cobalt Stike Beacon Detected – 116[.]211[.]120[.]25:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]119[.]212:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]73[.]117[.]245:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]116[.]3[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]60[.]167:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]85[.]158:6002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]155[.]66[.]70:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]36[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 88[.]80[.]148[.]204:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]185[.]248:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]74[.]250[.]143:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – amadey – 63fa96f3166091f524866b16fd91d2ae
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Malware Analysis – djvu – 59ebbae90911a0a3ca038e71855c7ce2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 59ebbae90911a0a3ca038e71855c7ce2SHA1: f38b4da77a1ef5c57252599e8f25a89ec9bc8ddfANALYSIS DATE: 2022-11-17T10:39:09ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – lockbit – 02ad715191b64a46120e38ca6cb1ef6a
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 02ad715191b64a46120e38ca6cb1ef6aSHA1: cfd8d84b1013e5cf88878ca36021272ee0231504ANALYSIS DATE: 2022-11-17T11:39:09ZTTPS: T1490, T1046, T1107, T1491, T1112, T1060, T1082,...
Malware Analysis – amadey – c90d70bb6c573d5eb9da902d67447fac
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police
A suspected leader of the Zeus cybercrime gang, Vyacheslav Igorevich Penchukov (aka Tank), was arrested by Swiss police. Swiss police last...
Iran-linked threat actors compromise US Federal Network
Iran-linked threat actors compromised a Federal Civilian Executive Branch organization using a Log4Shell exploit and installed a cryptomining malware. According...
Black Basta Ransomware Victim: Kessing Rechtsanwälte und Fachanwälte in PartGmbB
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – amadey – 601b88f56a0d282cba6e6b0c651475a5
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, botnet:srt, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware,...
Malware Analysis – amadey – 735b8638c111937fe3cecf0b6fe95ec1
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware,...
Malware Analysis – amadey – 76fb892989a0e9898ae9f1c8f8273560
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – djvu – 4b9a47a102eedbf7ae264602f2334ef4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 4b9a47a102eedbf7ae264602f2334ef4SHA1: 178b943c7497d091d837729c4c86e63a0f6d6766ANALYSIS DATE: 2022-11-17T05:40:47ZTTPS: T1060, T1112, T1005, T1081,...
Malware Analysis – djvu – 8af7de57dc5ba4d68ae95d169f673282
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 8af7de57dc5ba4d68ae95d169f673282SHA1: b55c3a90e5d9ad29aefad62910fdbc62c8df902fANALYSIS DATE: 2022-11-17T04:49:40ZTTPS: T1012, T1082, T1005, T1081,...
