Cobalt Stike Beacon Detected – 129[.]226[.]114[.]137:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Malware Analysis – ransomware – 879f36bad3f0e5244345d16f14787e91
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 879f36bad3f0e5244345d16f14787e91SHA1: e0534407f4861516a7dfbd700915cdedc802ca28ANALYSIS DATE: 2022-11-08T21:00:25ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – aa9f4ffe8c7083441d072b7e65703bb2
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: aa9f4ffe8c7083441d072b7e65703bb2SHA1: b33ffbc501c1a83bf91c499f765ef3f1c3f40c5fANALYSIS DATE: 2022-11-08T01:16:54ZTTPS: T1112, T1158, T1088, T1089, T1082, T1005,...
Malware Analysis – persistence – 85541869dac0562262f7ed179a63988a
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 85541869dac0562262f7ed179a63988aSHA1: 68e663d3cdce9df2ffd16050b68f65a009453aa3ANALYSIS DATE: 2022-11-08T01:17:04ZTTPS: T1112, T1107, T1490, T1005, T1081, T1082, T1060 ScoreMeaningExample10Known...
Malware Analysis – ransomware – 48d064f8cfa1d3a7f6b4cba7cc650e09
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 48d064f8cfa1d3a7f6b4cba7cc650e09SHA1: f640abaf32949f602cf812b4b2d47d5592b7b931ANALYSIS DATE: 2022-11-08T21:00:30ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – persistence – f6ff82c48f719397ad5e405dddc1f6af
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: f6ff82c48f719397ad5e405dddc1f6afSHA1: 1f6fe7f9492e3e1612f2b7aef27088a468868fe0ANALYSIS DATE: 2022-11-08T21:55:29ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 2e99a66b5866d2990d398da56a79a581
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2e99a66b5866d2990d398da56a79a581SHA1: 52956a7ead4a6357796bf3867c1b4063a3f7e473ANALYSIS DATE: 2022-11-08T21:20:33ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – wannacry – 23dff72aaab905199d40929519f10e65
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 23dff72aaab905199d40929519f10e65SHA1: 5f2304fdf992ac7d960b4bc7c2e63791b8f0dbcaANALYSIS DATE: 2022-11-08T21:20:41ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – quasar – 09c54575d33593070baaf2e45719913e
Score: 10 MALWARE FAMILY: quasarTAGS:family:quasar, evasion, persistence, ransomware, spyware, trojanMD5: 09c54575d33593070baaf2e45719913eSHA1: 6581403455b264d979be79aabf9b9fe3d65e2bc2ANALYSIS DATE: 2022-11-08T22:15:31ZTTPS: T1089, T1112, T1031, T1102, T1053, T1107,...
Malware Analysis – djvu – c140b3cc4bac974dfbe998436efa254e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: c140b3cc4bac974dfbe998436efa254eSHA1:...
Malware Analysis – djvu – d15be8de15096a9551c5475cbaafbbbd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: d15be8de15096a9551c5475cbaafbbbdSHA1:...
Malware Analysis – djvu – c6635d77243f0ac517a41f784ca5247f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c6635d77243f0ac517a41f784ca5247fSHA1: 1aceeadcc08cc43d87fe0b8d386671bfbd03b59cANALYSIS DATE: 2022-11-08T23:37:17ZTTPS: T1222, T1005, T1081, T1053,...
Malware Analysis – djvu – 17ee638b2f006f1f69b79c3cf173cae0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 17ee638b2f006f1f69b79c3cf173cae0SHA1: bf4c578c214b3d5b21b1e9e1a76647cdea606de9ANALYSIS DATE: 2022-11-08T22:17:32ZTTPS: T1060, T1112, T1012, T1082,...
DeimosC2: What SOC Analysts and Incident Responders Need to Know About This C&C Framework
This report provides defenders and security operations center teams with the technical details they need to know should they encounter...
Hybrid Cloud Management Security Tools
Explore hybrid cloud management security challenges, components, and tips to minimize your cyber risk. If you like the site, please...
Citrix ADC and Citrix Gateway are affected by a critical authentication bypass flaw
Citrix released security updates to address a critical authentication bypass vulnerability in Citrix ADC and Citrix Gateway. Citrix is urging...
SmokeLoader campaign distributes new Laplas Clipper malware
Researchers observed a SmokeLoader campaign that is distributing a new clipper malware dubbed Laplas Clipper that targets cryptocurrency users. Cyble...
LockBit 3.0 Ransomware Victim: crtl[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: thaiho[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
BlackCat/ALPHV Ransomware Victim: Motional
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
BlackCat/ALPHV Ransomware Victim: GMM Grammy Public Company Limited
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – ransomware – 7328af3a365df9561a55e86421fb81c0
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7328af3a365df9561a55e86421fb81c0SHA1: 6cfb5b4a68100678d95270e3d188572a30abd568ANALYSIS DATE: 2022-11-08T15:00:23ZTTPS: T1107, T1490, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 64ece5b294fae4f675cf7a8f75641ed4
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 64ece5b294fae4f675cf7a8f75641ed4SHA1: 7345d026efe7f27a5df85751ad308024d31532fcANALYSIS DATE: 2022-11-08T14:24:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – chaos – 5907869307f559b670e7acaf1d69cb08
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, spyware, stealer, upxMD5: 5907869307f559b670e7acaf1d69cb08SHA1: 1af63521c6a3f5d671c8bfc1f1f662894803d5a9ANALYSIS DATE: 2022-11-08T15:40:08ZTTPS: T1082, T1005, T1081, T1130, T1112 ScoreMeaningExample10Known badA...
