Cobalt Stike Beacon Detected – 43[.]139[.]69[.]104:8800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Malware Analysis – djvu – 17c6bac6b04b88cdced96c37db03f6cb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 17c6bac6b04b88cdced96c37db03f6cbSHA1: f9878c8d39e06db584bcc7b1c0d3428f960da077ANALYSIS DATE: 2022-12-11T14:58:45ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – – 8f5dcc39051655197379ccc45b20ea59
Score: 1 MALWARE FAMILY: TAGS:MD5: 8f5dcc39051655197379ccc45b20ea59SHA1: 2924f9bcab06c8323bd24080ca289b6d3c1d0a6aANALYSIS DATE: 2022-12-11T15:23:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – dcrat – 24cdc5cbf2b60ee657c4a80ca5ef73e6
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – djvu – d5c3b6fa21913ae9786e07beecc35f51
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d5c3b6fa21913ae9786e07beecc35f51SHA1: 7ba75800f149f4366d989380e887e0cf59f32398ANALYSIS DATE: 2022-12-11T17:32:53ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – ed2b9cc570a6acb59b8d5a3ab04073bc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ed2b9cc570a6acb59b8d5a3ab04073bcSHA1: 5b7bf6615472520e94d39f270d21e09f91282770ANALYSIS DATE: 2022-12-11T16:20:34ZTTPS: T1222, T1082, T1012, T1005,...
Malware Analysis – – 63acb0fc42adddeefed36db5b1ad61bb
Score: 1 MALWARE FAMILY: TAGS:MD5: 63acb0fc42adddeefed36db5b1ad61bbSHA1: 7ffe0a6043397f55fd794971cac56a79fc564c0aANALYSIS DATE: 2022-12-11T17:08:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Pwn2Own Toronto 2022 Day 4: $989K awarded for 63 unique zero-days
The Pwn2Own Toronto 2022 is ended, and the participants earned a total of $989,750 for 63 unique zero-day exploits. The...
Security Affairs newsletter Round 397
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Pyramid – A Tool To Help Operate In EDRs’ Blind Spots
What is it Pyramid is a set of Python scripts and module dependencies that can be used to evade EDRs....
Cobalt Stike Beacon Detected – 192[.]252[.]182[.]56:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]221[.]89[.]144:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 156[.]96[.]62[.]55:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]149[.]200[.]79:9530
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]234[.]72[.]253:8877
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 173[.]82[.]212[.]78:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – d673ccecb58e7c43d4418f96f92f734e
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: d673ccecb58e7c43d4418f96f92f734eSHA1: 23355f8e29674d3d07d6dc8f11e4b45a6431241dANALYSIS DATE: 2022-12-06T19:21:49ZTTPS: T1158, T1491, T1112, T1082, T1042 ScoreMeaningExample10Known badA malware family...
Malware Analysis – xorist – 8765f4371895e44b31a9888e8f80e57a
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 8765f4371895e44b31a9888e8f80e57aSHA1: e3eceec5d79b35f4474466b98abd966c7d351b2fANALYSIS DATE: 2022-12-06T19:31:44ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – evasion – 778f3d5796aab52a39f582976f0961f2
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: 778f3d5796aab52a39f582976f0961f2SHA1: c41ae710c606507baeb996b9ad5b5b6556c8a6d5ANALYSIS DATE: 2022-12-06T19:24:19ZTTPS: T1082, T1012, T1120, T1112, T1060, T1158 ScoreMeaningExample10Known badA...
Malware Analysis – ransomware – 6f50d30f7af91d49ac39b91c915b4c43
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 6f50d30f7af91d49ac39b91c915b4c43SHA1: 4dfecc2d4788e886343dd13f7ff83cd7ac47dfd1ANALYSIS DATE: 2022-12-06T19:31:38ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Cobalt Stike Beacon Detected – 154[.]22[.]117[.]115:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 61[.]80[.]41[.]232:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 137[.]184[.]137[.]107:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]71[.]153[.]157:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
