Cobalt Stike Beacon Detected – 141[.]164[.]54[.]234:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 107[.]148[.]201[.]158:7444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – 0ea23ae31c365f335d8f7ae2bd9102e0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 0ea23ae31c365f335d8f7ae2bd9102e0SHA1: 55ec98cf8e28a6bb9466110d7011d8047fe4fc9eANALYSIS DATE: 2022-11-08T09:29:41ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 31854b87dba99a326982933cdb4a9611
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 31854b87dba99a326982933cdb4a9611SHA1: b2e7386fe7b33d88aedde54778c53ee3853a790aANALYSIS DATE: 2022-11-09T10:11:50ZTTPS: T1053, T1060, T1112, T1222, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – amadey – 1f594c5730b19bf59bdd158107f69649
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:gg, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, trojanMD5: 1f594c5730b19bf59bdd158107f69649SHA1: 13bd3a1ca67e6cf38052c4af3e4aaba6966b3c14ANALYSIS...
Malware Analysis – banker – 95d71b5c7a22c7075a199d0f088588d0
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 95d71b5c7a22c7075a199d0f088588d0SHA1: 54d6b2b90e3f07135570069e96e7500996eafd9aANALYSIS DATE: 2022-11-09T09:19:03ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – fef3f504d69c78a46bf73e3bbfd2c15a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: fef3f504d69c78a46bf73e3bbfd2c15aSHA1: 3bed6f795e142fa7d76041660a950c0aac48d69aANALYSIS DATE: 2022-11-09T10:37:44ZTTPS: T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA malware...
Malware Analysis – chaos – 143281e40426d479af7df3ce87ba726c
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, spyware, stealerMD5: 143281e40426d479af7df3ce87ba726cSHA1: 1a6ee7dd14214e6fbf3f0e8360ffcbe0c18cb9d0ANALYSIS DATE: 2022-11-09T11:12:04ZTTPS: T1082, T1005, T1081, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – flubot – c090102914f9d558dca69c875428946f
Score: 10 MALWARE FAMILY: flubotTAGS:family:flubot, banker, evasion, infostealer, ransomware, trojanMD5: c090102914f9d558dca69c875428946fSHA1: 4887d7a53823bee74d8610f6ba8d0a6163064c33ANALYSIS DATE: 2022-11-09T11:04:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – dcrat – b27e540aef37c99f3cfd2766c2e61784
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, discovery, evasion, infostealer, rat, trojanMD5: b27e540aef37c99f3cfd2766c2e61784SHA1: c516b74daec17d1bc788c54433cf10899ee07e92ANALYSIS DATE: 2022-11-09T11:26:42ZTTPS: T1089, T1112, T1031, T1082, T1012, T1057...
VMware fixes three critical flaws in Workspace ONE Assist
VMware address three critical bugs in the Workspace ONE Assist solution that allow remote attackers to bypass authentication and elevate...
Malware Analysis – persistence – 924ad7b7753e75894a3b98887013d485
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 924ad7b7753e75894a3b98887013d485SHA1: 2b3f0c2a2a290807c7d02950203eb3d1390456f8ANALYSIS DATE: 2022-11-08T04:15:35ZTTPS: T1060, T1112, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – discovery – 69da2d7b37bc962cd1a7d36975871b38
Score: 9 MALWARE FAMILY: discoveryTAGS:discovery, ransomware, spyware, stealerMD5: 69da2d7b37bc962cd1a7d36975871b38SHA1: 385ca7bf6a915b0a2694921c8926d69d4a30fcc5ANALYSIS DATE: 2022-11-08T04:29:06ZTTPS: T1046, T1082, T1107, T1490, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – teslacrypt – 4ba3b368b7a30eec7084a087460cd4a5
Score: 10 MALWARE FAMILY: teslacryptTAGS:family:teslacrypt, persistence, ransomwareMD5: 4ba3b368b7a30eec7084a087460cd4a5SHA1: 209abbe07dfa54439f93bfd1092006bcaa5dd83bANALYSIS DATE: 2022-11-08T04:49:49ZTTPS: T1107, T1490, T1130, T1112, T1082, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – aa3495ca3c1cbe779ca8049d04b4d434
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: aa3495ca3c1cbe779ca8049d04b4d434SHA1: 1b4f48e4c705b8be18c859cd5f6450bbdcc13ef0ANALYSIS DATE: 2022-11-08T05:08:56ZTTPS: T1112, T1088, T1089, T1082, T1005, T1081,...
Malware Analysis – evasion – b6c893e8a3a4c772a660ac6f7b348c82
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: b6c893e8a3a4c772a660ac6f7b348c82SHA1: a70edd3b4fd90dc4e05b7490104d30f46681b112ANALYSIS DATE: 2022-11-08T05:18:55ZTTPS: T1060, T1112, T1158, T1088, T1089, T1082,...
Malware Analysis – persistence – 3595e58306ea531434678f7de9ac5a4e
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 3595e58306ea531434678f7de9ac5a4eSHA1: 13457ef2059f5cfc10597e50684d7fc9e4277bccANALYSIS DATE: 2022-11-08T05:19:58ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – wannacry – dc976c1f32f5f40e359a5a574ec07b74
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: dc976c1f32f5f40e359a5a574ec07b74SHA1: e5adaad1be348d7985f2d9a51173f90f954b216eANALYSIS DATE: 2022-11-09T03:00:37ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – teslacrypt – 08ed3a82b107e945abbdf43a03f7bf06
Score: 10 MALWARE FAMILY: teslacryptTAGS:family:teslacrypt, persistence, ransomwareMD5: 08ed3a82b107e945abbdf43a03f7bf06SHA1: c1413fe082a18a5b895c9c8ddebb3b684cb22dd8ANALYSIS DATE: 2022-11-08T06:23:09ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family...
Malware Analysis – discovery – cfaedfe3c6c201ee053d40e63825eefe
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: cfaedfe3c6c201ee053d40e63825eefeSHA1: 574db9f1e4f682d178d02186aaf21452ce5e858cANALYSIS DATE: 2022-11-08T05:49:54ZTTPS: T1046, T1053, T1018, T1012, T1120, T1082, T1491, T1112, T1107, T1490...
Malware Analysis – djvu – e744f28263ec2303d506f67162dc42d5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: e744f28263ec2303d506f67162dc42d5SHA1: d087140326bc0ed09a81d01b001f2d21bb5f0652ANALYSIS DATE: 2022-11-09T04:13:26ZTTPS: T1005, T1081, T1222, T1053,...
Malware Analysis – wannacry – 574303c1af61fdefc03328406c2a2b42
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 574303c1af61fdefc03328406c2a2b42SHA1: bcb684a157b36f78452d43f208cfe0ebdda728e1ANALYSIS DATE: 2022-11-09T03:00:46ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – phobos – 89ecb17e4dd618967b8d31ce34052c2b
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: 89ecb17e4dd618967b8d31ce34052c2bSHA1: 1c2c6d8809bb77ead595fa41faac6b3861df18aaANALYSIS DATE: 2022-11-09T05:26:03ZTTPS: T1490, T1059, T1107, T1060, T1112, T1005,...
Malware Analysis – amadey – 825333619986c0b941f5f28306408c72
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:@redlinevip cloud (tg: @fatherofcarders), botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer,...
