threatintel

Cobalt Stike Beacon Detected – 45[.]66[.]159[.]41:4445

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 5[.]188[.]86[.]196:80

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – evasion – fadd46a249a193e6611108d2b56332d4

December 28, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: fadd46a249a193e6611108d2b56332d4SHA1: 359eb590c8151019cba624e02c4fd914eca6c061ANALYSIS DATE: 2022-12-27T21:44:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Cobalt Stike Beacon Detected – 119[.]23[.]61[.]52:8090

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – f509a9c8b550834134c1dbcdd8a19850

December 28, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: f509a9c8b550834134c1dbcdd8a19850SHA1: affc52c4743a35846abbbca3253f35e1eb369690ANALYSIS DATE: 2022-12-27T22:03:10ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...

Malware Analysis – evasion – 6018ee32726b6359a33b58aafc6102db

December 28, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 6018ee32726b6359a33b58aafc6102dbSHA1: 7c3a2b34f91af59f39cc8301852434c583a85379ANALYSIS DATE: 2022-12-27T21:57:35ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – ransomware – ac92e8ecd550b8078e7482534a3c1fb9

December 28, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ac92e8ecd550b8078e7482534a3c1fb9SHA1: dd376d8bdeb08599192be67098824c874c260e2eANALYSIS DATE: 2022-12-27T21:54:22ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Cobalt Stike Beacon Detected – 185[.]216[.]71[.]178:8011

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 35[.]79[.]14[.]10:443

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 185[.]225[.]73[.]244:4433

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 8[.]134[.]96[.]195:443

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]128[.]72[.]129:80

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – evasion – b09be4c99c439a41bbc2b1a71169f695

December 28, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b09be4c99c439a41bbc2b1a71169f695SHA1: 73143ca8bdcdc2dd1f5f2c04f1b7727684953afeANALYSIS DATE: 2022-12-27T23:34:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – evasion – 50448dd991e3a795303903da1a313e97

December 28, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 50448dd991e3a795303903da1a313e97SHA1: 8bc29df5fef20df7d8ada903aa6a8efba03d7c9eANALYSIS DATE: 2022-12-27T22:34:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – djvu – 8cd13cde3b9cad160fe35cd3f90450b6

December 28, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 8cd13cde3b9cad160fe35cd3f90450b6SHA1: 295ef7114c70dc757b3e77a3528ca0ce76216720ANALYSIS DATE: 2022-12-27T22:19:38ZTTPS: T1005, T1081, T1012, T1082, T1053, T1060,...

Malware Analysis – evasion – a4824e4321a0510726acc06230b22078

December 28, 2022

Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: a4824e4321a0510726acc06230b22078SHA1: 3e5077ccb1ce88fcb496b82e15318382191a9747ANALYSIS DATE: 2022-12-27T22:12:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – phobos – b2f083ee365141030c49ddffc325f6be

December 27, 2022

Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: b2f083ee365141030c49ddffc325f6beSHA1: f1091be7e566d068403a87b0e7ed4b959c952c8eANALYSIS DATE: 2022-12-27T15:34:01ZTTPS: T1490, T1059, T1107, T1005, T1081, T1112,...

Royal Ransomware Victim: Inforlandia

December 27, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Royal Ransomware Victim: HELMA Eigenheimbau AG

December 27, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Royal Ransomware Victim: Grupo Ibiapina Ltda

December 27, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Royal Ransomware Victim: INTRADO

December 27, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Malware Analysis – evasion – 58bfb77a4d2a255dbb215eacddc00550

December 27, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 58bfb77a4d2a255dbb215eacddc00550SHA1: e0fd8e025ed77e78453754a2c4a5775cfceee8d3ANALYSIS DATE: 2022-12-27T15:48:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – evasion – 3b2f57aa973b07e8404a4eef7f7cf5e1

December 27, 2022

Score: 6 MALWARE FAMILY: evasionTAGS:evasionMD5: 3b2f57aa973b07e8404a4eef7f7cf5e1SHA1: 6da8b70124e75c5e33b7ffe0a2ffaefdb8e3cad1ANALYSIS DATE: 2022-12-27T16:08:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – djvu – ec879183dee40f1831338a7a80a25c5e

December 27, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: ec879183dee40f1831338a7a80a25c5eSHA1: 0a095bd1188716fe1c19640dc2aa7f971b689995ANALYSIS DATE: 2022-12-27T15:54:22ZTTPS: T1053, T1005, T1081, T1012, T1082, T1060,...

threatintel

Cobalt Stike Beacon Detected – 45[.]66[.]159[.]41:4445

Cobalt Stike Beacon Detected – 5[.]188[.]86[.]196:80

Malware Analysis – evasion – fadd46a249a193e6611108d2b56332d4

Cobalt Stike Beacon Detected – 119[.]23[.]61[.]52:8090

Malware Analysis – djvu – f509a9c8b550834134c1dbcdd8a19850

Malware Analysis – evasion – 6018ee32726b6359a33b58aafc6102db

Malware Analysis – ransomware – ac92e8ecd550b8078e7482534a3c1fb9

Cobalt Stike Beacon Detected – 185[.]216[.]71[.]178:8011

Cobalt Stike Beacon Detected – 35[.]79[.]14[.]10:443

Cobalt Stike Beacon Detected – 185[.]225[.]73[.]244:4433

Cobalt Stike Beacon Detected – 8[.]134[.]96[.]195:443

Cobalt Stike Beacon Detected – 43[.]128[.]72[.]129:80

Malware Analysis – evasion – b09be4c99c439a41bbc2b1a71169f695

Malware Analysis – evasion – 50448dd991e3a795303903da1a313e97

Malware Analysis – djvu – 8cd13cde3b9cad160fe35cd3f90450b6

Malware Analysis – evasion – a4824e4321a0510726acc06230b22078

Malware Analysis – phobos – b2f083ee365141030c49ddffc325f6be

Royal Ransomware Victim: Inforlandia

Royal Ransomware Victim: HELMA Eigenheimbau AG

Royal Ransomware Victim: Grupo Ibiapina Ltda

Royal Ransomware Victim: INTRADO

Malware Analysis – evasion – 58bfb77a4d2a255dbb215eacddc00550

Malware Analysis – evasion – 3b2f57aa973b07e8404a4eef7f7cf5e1

Malware Analysis – djvu – ec879183dee40f1831338a7a80a25c5e

Critics Blast Microsoft’s Limited Reprieve For Those Stuck On Windows 10

China Successfully Tests Hypersonic Aircraft, Maybe At Mach 12

Mastering Firewall Technology for Better Cyber Defense

CVE Alert: CVE-2025-6900

CVE Alert: CVE-2025-6898

You may have missed