Cobalt Stike Beacon Detected – 103[.]150[.]173[.]228:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 104[.]225[.]154[.]203:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ctblocker – 95f60b5b36d63307d83e3f3de9675a1d
Score: 10 MALWARE FAMILY: ctblockerTAGS:family:ctblocker, ransomwareMD5: 95f60b5b36d63307d83e3f3de9675a1dSHA1: da733991d9618b3a3bb5cc503ba0e860f1e8ea29ANALYSIS DATE: 2022-10-29T15:55:01ZTTPS: T1082, T1107, T1490, T1491, T1112, T1012 ScoreMeaningExample10Known badA malware family...
Malware Analysis – wannacry – ac632aeca091d4ac3ac0cf160f787032
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: ac632aeca091d4ac3ac0cf160f787032SHA1: 0c9f8c9ca978cdec4781b60b4e941e44bd5c8bdcANALYSIS DATE: 2022-10-29T20:20:27ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – evasion – 07b9898ff9ae398d6d43e898cafc87bd
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 07b9898ff9ae398d6d43e898cafc87bdSHA1: 387eb977a49b10c3c245f2a8ccdd401af83c00b4ANALYSIS DATE: 2022-10-29T15:57:14ZTTPS: T1107, T1490, T1112, T1082, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – ed8723ee64b277fd0f60732895c087d8
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: ed8723ee64b277fd0f60732895c087d8SHA1: 34fcea43abfe51973953bd64792fe21e593aca05ANALYSIS DATE: 2022-10-29T15:57:11ZTTPS: T1107, T1490, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware...
Cobalt Stike Beacon Detected – 103[.]135[.]101[.]182:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]221[.]252[.]231:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]91:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]181[.]79:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 8ff45c762ee4259f7bc2fc2e2372283a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8ff45c762ee4259f7bc2fc2e2372283aSHA1: 6fc6037833b71e67e8c229514b9cea589ca2cc8bANALYSIS DATE: 2022-10-29T20:56:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 3d5811564acf2f7726833cd0f0f3e82c
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 3d5811564acf2f7726833cd0f0f3e82cSHA1: d7cebf3154d488de7483b3ed19a115eeb5f02896ANALYSIS DATE: 2022-10-29T21:23:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – e03466a56b1cbd1ab65949e82c1e8a05
Score: 10 MALWARE FAMILY: TAGS:MD5: e03466a56b1cbd1ab65949e82c1e8a05SHA1: 159c6917dd528df56ef0c4f41d06d2f567e54b3fANALYSIS DATE: 2022-10-29T21:48:44ZTTPS: T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 457bbbee8fb7b64a5824d80ff19b7092
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 457bbbee8fb7b64a5824d80ff19b7092SHA1: d976cec45ae1605dde841e9b47dac57f78e7b725ANALYSIS DATE: 2022-10-29T21:31:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 18[.]191[.]177[.]87:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]29[.]82[.]40:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]55[.]2[.]194:4545
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]130[.]45[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – wannacry – c811454bbc5b86a0621a7cafb34db16f
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: c811454bbc5b86a0621a7cafb34db16fSHA1: 981715e9b580cecc57006b326886acc08c52c18fANALYSIS DATE: 2022-10-29T22:40:23ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – djvu – 7fdba86bba0508054fd1f058a6a2d134
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1752, botnet:google2, botnet:mario23_10, botnet:slovarik15btc, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware,...
Malware Analysis – djvu – 3ec20eda511b082c02840cf7cbafd6e1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1752, botnet:517, botnet:google2, botnet:mario23_10, botnet:slovarik15btc, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – avaddon – ad3bc99ab03f6fcef0215c0eb185bf6f
Score: 10 MALWARE FAMILY: avaddonTAGS:family:avaddon, evasion, ransomware, trojanMD5: ad3bc99ab03f6fcef0215c0eb185bf6fSHA1: 135d0497aa12587d1970ff2e6d2eb9bc401c898fANALYSIS DATE: 2022-10-29T22:44:52ZTTPS: T1082, T1088, T1089, T1112, T1012, T1120, T1107, T1490...
Posh C2 Detected – 116[.]203[.]51[.]117:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Twilio discloses another security incident that took place in June
Twilio suffered another brief security incident in June 2022, the attack was conducted by the same threat actor of the August hack....
