Cobalt Stike Beacon Detected – 47[.]92[.]126[.]126:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 120[.]48[.]118[.]149:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – fe311cbf28e46b0bbfbd7e848ac6867b
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: fe311cbf28e46b0bbfbd7e848ac6867bSHA1: 14b231291b8370fa08da5fec80cf96ac713971f6ANALYSIS DATE: 2023-03-08T15:20:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 9f8de64b1ae31558a70d0915c545064b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 9f8de64b1ae31558a70d0915c545064bSHA1: 17f748ecd0c5badc7a8da0025ce1d6b394ce60dbANALYSIS DATE: 2023-03-08T16:15:25ZTTPS: T1005, T1081, T1082, T1222, T1012,...
Malware Analysis – chaos – b431bf2649aee55b729f1668a7bc4b12
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: b431bf2649aee55b729f1668a7bc4b12SHA1: f618c191798cd8a809120bbf6b09ff79d8877138ANALYSIS DATE: 2023-03-08T15:39:05ZTTPS: T1490, T1059, T1107, T1491, T1112, T1012, T1082,...
Malware Analysis – djvu – d65e8623c52eadbd5d75a1f515d49500
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d65e8623c52eadbd5d75a1f515d49500SHA1: 750dc8abea1f81ba18baa69d714a5df070dd6d00ANALYSIS DATE: 2023-03-08T15:22:25ZTTPS: T1060, T1112, T1082, T1005, T1081,...
Malware Analysis – discovery – cf5d70e9da8dd67bc9d9fb9e0d60a9d6
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomware, upxMD5: cf5d70e9da8dd67bc9d9fb9e0d60a9d6SHA1: 13b699cc65af670fc51b117a8344648840eefaddANALYSIS DATE: 2023-03-08T15:32:17ZTTPS: T1012, T1120, T1082, T1050 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 012cb286ce81b404dc70c71a82269f9d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 012cb286ce81b404dc70c71a82269f9dSHA1: 50433747e0eab4fcd9c9ae59b2b60b4174ab2a62ANALYSIS DATE: 2023-03-08T16:16:13ZTTPS: T1005, T1081, T1012, T1082, T1060,...
Malware Analysis – djvu – f87d7f832564c394452812cea1e4329a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: f87d7f832564c394452812cea1e4329aSHA1: b3d889c87a05799fc1f40b70799a15470712d589ANALYSIS DATE: 2023-03-08T16:23:18ZTTPS: T1012, T1082, T1053, T1005, T1081,...
Malware Analysis – discovery – baabd73bcc36410b8ac2c583256daea4
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, ransomware, spyware, stealer, trojan, upxMD5: baabd73bcc36410b8ac2c583256daea4SHA1: 8cff0fd52aea3e2f4f1e0613a6a37b9c7efa88fbANALYSIS DATE: 2023-03-08T16:31:39ZTTPS: T1005, T1081, T1082, T1031,...
Malware Analysis – amadey – b3503a8c59408ce1ae5e2f00931ff9df
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: b3503a8c59408ce1ae5e2f00931ff9dfSHA1: 2e8d5546ce7d1f9a645fb7fdca7de1b98c0b00b8ANALYSIS DATE: 2023-03-08T16:31:46ZTTPS: T1060,...
Malware Analysis – djvu – b80fb8f1c0bb9b4e8d08ab130ab9071e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: b80fb8f1c0bb9b4e8d08ab130ab9071eSHA1: 4b1a28730a1a2224a37ab641f80b1b53ac1f4240ANALYSIS DATE: 2023-03-08T16:46:14ZTTPS: T1012, T1082, T1005, T1081, T1222,...
Malware Analysis – amadey – cc08259751fc626dc85ab53850673c6e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: cc08259751fc626dc85ab53850673c6eSHA1: 3a78667441f736103b69433b8af21a739c17a460ANALYSIS DATE: 2023-03-08T17:03:09ZTTPS: T1012,...
Malware Analysis – djvu – 13e3a0ef1cb2de40b1c4473a2dd07679
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 13e3a0ef1cb2de40b1c4473a2dd07679SHA1: c27be7a6c9183de9a308a70ac44d6092053b1d66ANALYSIS DATE: 2023-03-08T16:44:49ZTTPS: T1060, T1112, T1222, T1012, T1082,...
Malware Analysis – banker – 05279abec80ac228b807f4eb1c0e5a2c
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 05279abec80ac228b807f4eb1c0e5a2cSHA1: 2ceb03e65b935b599e56f7a5dacd8045633e115aANALYSIS DATE: 2023-03-08T17:20:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Why Healthcare Can’t Afford to Ignore Digital Identity
Investing in digital identity can improve security, increase clinical productivity, and boost healthcare's bottom line. — by Gus Malezis, CEO...
Sharp Panda Using New Soul Framework Version to Target Southeast Asian Governments
High-profile government entities in Southeast Asia are the target of a cyber espionage campaign undertaken by a Chinese threat actor...
Syxsense Platform: Unified Security and Endpoint Management
As threats grow and attack surfaces get more complex, companies continue to struggle with the multitude of tools they utilize...
CISA’s KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog,...
Jenkins Security Alert: New Security Flaws Could Allow Code Execution Attacks
A pair of severe security vulnerabilities have been disclosed in the Jenkins open source automation server that could lead to...
Lazarus Group Exploits Zero-Day Vulnerability to Hack South Korean Financial Entity
The North Korea-linked Lazarus Group has been observed weaponizing flaws in an undisclosed software to breach a financial business entity...
Malware Analysis – djvu – fd9ec571c9317b69d96d3ef09fc3b722
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: fd9ec571c9317b69d96d3ef09fc3b722SHA1: 62950112b396b6299fb1e7fb3bb2bba5cf5f64b5ANALYSIS DATE: 2023-03-08T10:11:38ZTTPS: T1005, T1081, T1012, T1082, T1060,...
Malware Analysis – smokeloader – f4b08f9f07a4938b83f1564b1c21cf27
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f4b08f9f07a4938b83f1564b1c21cf27SHA1: 7ac9dd5a0f7464836ae4b001c2774bb5eb352b5aANALYSIS DATE: 2023-03-08T10:26:12ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – cf4c9cd6e648b12c80bf947c77be8f89
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: cf4c9cd6e648b12c80bf947c77be8f89SHA1: 1683c6778019a0269a430a40fa26872a484df307ANALYSIS DATE:...
