threatintel

Cobalt Stike Beacon Detected – 1[.]12[.]48[.]210:50000

December 2, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – wannacry – ed7f40e4e7ba70381d580a5ce8247ea1

December 2, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: ed7f40e4e7ba70381d580a5ce8247ea1SHA1: ca4bacd7fc40b8ddcb6f5623b21614cac16bbd52ANALYSIS DATE: 2022-11-30T14:03:29ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – 7bf0fb013eef78b55c39cbc62339e4a5

December 2, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 7bf0fb013eef78b55c39cbc62339e4a5SHA1: 1fa5586c2884c5b5cc6bc99c7a2ce0e49b93d7d2ANALYSIS DATE: 2022-11-30T14:05:57ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – 8f5f214c98f0287f8ef9ecc18e1fab41

December 2, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 8f5f214c98f0287f8ef9ecc18e1fab41SHA1: 220239a1acde4883173708d67b28a1757617b30aANALYSIS DATE: 2022-11-30T14:07:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – wannacry – ed7cd9ddd0c1e1cf38f59e9e664d080f

December 2, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: ed7cd9ddd0c1e1cf38f59e9e664d080fSHA1: 6b09a1cb5f9f43bd961176c90ace84a3030aff04ANALYSIS DATE: 2022-11-30T13:50:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – evasion – 80a2944d792c27417c3b06c3183626dc

December 2, 2022

Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 80a2944d792c27417c3b06c3183626dcSHA1: 9f76c8445c658720085784e1c38fb9616b5aa781ANALYSIS DATE: 2022-12-02T09:05:12ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – adware – eeeaf6060eb054b3cb226489772d16a1

December 2, 2022

Score: 10 MALWARE FAMILY: adwareTAGS:adware, bootkit, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: eeeaf6060eb054b3cb226489772d16a1SHA1: 31bd0c26984708b894e0f917a10264fdd74ecab9ANALYSIS DATE: 2022-12-02T08:33:48ZTTPS: T1012, T1082, T1060,...

Malware Analysis – djvu – 84e10f7f6ff7d48611fc44cc9d6cf2f4

December 2, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 84e10f7f6ff7d48611fc44cc9d6cf2f4SHA1: 7fd0d6f299baabc35efcaa83f7e7749d3a7297adANALYSIS DATE: 2022-12-02T10:07:32ZTTPS: T1130, T1112, T1060, T1222, T1082, T1012 ScoreMeaningExample10Known badA...

Malware Analysis – sodinokibi – a3749c66f65d247d8a6fae1be26d3ef9

December 2, 2022

Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:5, campaign:367, ransomwareMD5: a3749c66f65d247d8a6fae1be26d3ef9SHA1: c394464bba56e62ddfe2c9073932fb656fb78b6cANALYSIS DATE: 2022-12-02T09:48:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Brute Ratel C4 Detected – 45[.]137[.]117[.]219:443

December 2, 2022

The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...

Malware Analysis – ransomware – 09c09f6890098c4686b55b1af5a4494c

December 2, 2022

Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 09c09f6890098c4686b55b1af5a4494cSHA1: e252aafe3a5de030f1ae49f86bd1e1b4743b7ddeANALYSIS DATE: 2022-12-02T11:29:22ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – djvu – 4eba652fcb08f677765760fd3b9af02f

December 2, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 4eba652fcb08f677765760fd3b9af02fSHA1: e49b8d2a70975897d664e38ab55c970b07f734b3ANALYSIS DATE: 2022-12-02T10:25:57ZTTPS: T1060, T1112, T1222, T1082, T1012, T1130 ScoreMeaningExample10Known badA...

Malware Analysis – amadey – df551c1f4b32c3c1bba785c23297b62c

December 2, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: df551c1f4b32c3c1bba785c23297b62cSHA1: f522481eb37575d29c62a5dae2c7c9c9412356c6ANALYSIS DATE:...

Malware Analysis – amadey – c05a5e1f0fe1ada0824c6ed62d7c1014

December 2, 2022

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c05a5e1f0fe1ada0824c6ed62d7c1014SHA1: 6cd88375eb41aa2bf5628fe64585df698c24a5bbANALYSIS DATE:...

KSB2022_Statistics-of-the-Year-990x400-1

Kaspersky Security Bulletin 2022. Statistics

December 2, 2022

All statistics in this report are from the global cloud service Kaspersky Security Network (KSN), which receives information from components...

Malware Analysis – persistence – a735ff10e359539181c1eca593091ee6

December 2, 2022

Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a735ff10e359539181c1eca593091ee6SHA1: 8a977618d315bfacb16afbe883e04f427311cefbANALYSIS DATE: 2022-12-02T03:36:25ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family was...

Malware Analysis – globeimposter – d0c67160c740f62c25b0558e9563a824

December 2, 2022

Score: 10 MALWARE FAMILY: globeimposterTAGS:family:globeimposter, persistence, ransomware, spyware, stealerMD5: d0c67160c740f62c25b0558e9563a824SHA1: 5b6515fb1d1e8581d4f70b03e25053051621656fANALYSIS DATE: 2022-12-02T03:36:30ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – evasion – 197a5d55e3602be8fbafdad373021886

December 2, 2022

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 197a5d55e3602be8fbafdad373021886SHA1: ff8321ebff95c3706847696c1515974db64ddec9ANALYSIS DATE: 2022-11-30T09:51:43ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – dcrat – fd16369ea0ae1958caa9cd09fc114704

December 2, 2022

Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: fd16369ea0ae1958caa9cd09fc114704SHA1:...

Malware Analysis – dcrat – 811a9e43c241b7b65275326de223785c

December 2, 2022

Malware Analysis – ransomware – daade2e0cfa7edb952c8de1b2fadb701

December 2, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: daade2e0cfa7edb952c8de1b2fadb701SHA1: c9701e17f9ea02548060306cd3c48cbfa0e43121ANALYSIS DATE: 2022-12-02T04:06:00ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – djvu – d45513c2e1be1a29339c921168c8cd19

December 2, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d45513c2e1be1a29339c921168c8cd19SHA1: 4b8bb78467ad97740cc6cbb7dd4a3022cdfda951ANALYSIS DATE: 2022-12-02T04:32:39ZTTPS: T1060, T1112, T1012, T1082,...

Malware Analysis – blackcat – 3e52a1ec6462ec78ca39a22af21a7f28

December 2, 2022

Score: 10 MALWARE FAMILY: blackcatTAGS:family:blackcat, ransomwareMD5: 3e52a1ec6462ec78ca39a22af21a7f28SHA1: bac0a8d5199c70b27888eb12e501697a4d268b8fANALYSIS DATE: 2022-12-02T04:25:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Royal Ransomware Victim: Lamtec

December 2, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

threatintel

Cobalt Stike Beacon Detected – 1[.]12[.]48[.]210:50000

Malware Analysis – wannacry – ed7f40e4e7ba70381d580a5ce8247ea1

Malware Analysis – wannacry – 7bf0fb013eef78b55c39cbc62339e4a5

Malware Analysis – wannacry – 8f5f214c98f0287f8ef9ecc18e1fab41

Malware Analysis – wannacry – ed7cd9ddd0c1e1cf38f59e9e664d080f

Malware Analysis – evasion – 80a2944d792c27417c3b06c3183626dc

Malware Analysis – adware – eeeaf6060eb054b3cb226489772d16a1

Malware Analysis – djvu – 84e10f7f6ff7d48611fc44cc9d6cf2f4

Malware Analysis – sodinokibi – a3749c66f65d247d8a6fae1be26d3ef9

Brute Ratel C4 Detected – 45[.]137[.]117[.]219:443

Malware Analysis – ransomware – 09c09f6890098c4686b55b1af5a4494c

Malware Analysis – djvu – 4eba652fcb08f677765760fd3b9af02f

Malware Analysis – amadey – df551c1f4b32c3c1bba785c23297b62c

Malware Analysis – amadey – c05a5e1f0fe1ada0824c6ed62d7c1014

Kaspersky Security Bulletin 2022. Statistics

Malware Analysis – persistence – a735ff10e359539181c1eca593091ee6

Malware Analysis – globeimposter – d0c67160c740f62c25b0558e9563a824

Malware Analysis – evasion – 197a5d55e3602be8fbafdad373021886

Malware Analysis – dcrat – fd16369ea0ae1958caa9cd09fc114704

Malware Analysis – dcrat – 811a9e43c241b7b65275326de223785c

Malware Analysis – ransomware – daade2e0cfa7edb952c8de1b2fadb701

Malware Analysis – djvu – d45513c2e1be1a29339c921168c8cd19

Malware Analysis – blackcat – 3e52a1ec6462ec78ca39a22af21a7f28

Royal Ransomware Victim: Lamtec

[QILIN] – Ransomware Victim: http://www[.]balkankalip[.]com

[SECUROTROP] – Ransomware Victim: BronzeCraft

[KRAKEN] – Ransomware Victim: www[.]optyma[.]co[.]uk

CVE Alert: CVE-2025-7938

CVE Alert: CVE-2025-7316

You may have missed