threatintel

lcmh

Ransomware attack at Louisiana hospital impacts 270,000 patients

December 28, 2022

The Lake Charles Memorial Health System (LCMHS) is sending out notices of a data breach affecting thousands of people who...

Read More

BlackCat/ALPHV Ransomware Victim: ELOTECH – HACKED AND MORE THEN 100 GB DATA LEAKED!

December 28, 2022

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Read More

abstract-malware-990x400-1

Malware Analysis – ransomware – 4f6173eb23deaff1670b1b2f0f6882fe

December 28, 2022

Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 4f6173eb23deaff1670b1b2f0f6882feSHA1: 8b0aa4a785803ebcd71fa71dfe5b3671c1ab6c13ANALYSIS DATE: 2022-12-28T09:21:54ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Read More

abstract-malware-990x400-1

Malware Analysis – eternity – 27063953e8334bc1d395274a3ff8e66f

December 28, 2022

Score: 10 MALWARE FAMILY: eternityTAGS:family:eternity, evasion, ransomwareMD5: 27063953e8334bc1d395274a3ff8e66fSHA1: c99c0c640f2cf83d15a5d77851b01f46351925dbANALYSIS DATE: 2022-12-28T09:21:24ZTTPS: T1107, T1490, T1018, T1053, T1082 ScoreMeaningExample10Known badA malware family...

Read More

abstract-malware-990x400-1

Malware Analysis – phobos – 4f1025c0661cc0fa578a52466fa65b71

December 28, 2022

Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: 4f1025c0661cc0fa578a52466fa65b71SHA1: 591d9da3673498a3cf184637c0b83e62fa7e1e8cANALYSIS DATE: 2022-12-28T09:21:25ZTTPS: T1490, T1059, T1107, T1031, T1005, T1081,...

Read More

abstract-malware-990x400-1

Malware Analysis – spyware – 0958f9982100af9d8e172524fdc0d47c

December 28, 2022

Score: 7 MALWARE FAMILY: spywareTAGS:spyware, stealerMD5: 0958f9982100af9d8e172524fdc0d47cSHA1: ce560a4372421d282eb799c7e4a9e68c1f01d526ANALYSIS DATE: 2022-12-28T09:22:37ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Read More

abstract-malware-990x400-1

Malware Analysis – discovery – b201b3d3c587847475d569e7226810c5

December 28, 2022

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: b201b3d3c587847475d569e7226810c5SHA1: 2376e7f5f2fa4ef0d38e1dd69840ac8c26bd6941ANALYSIS DATE: 2022-12-28T10:08:40ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 164[.]90[.]152[.]132:443

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 986637d89c3260cc32e19f5559e44fe9

December 28, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 986637d89c3260cc32e19f5559e44fe9SHA1: c8ff5c2d89107a6db7548386428a001ab948b8f5ANALYSIS DATE: 2022-12-28T09:50:52ZTTPS: T1005, T1081, T1012, T1082, T1222, T1053,...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 39[.]105[.]168[.]110:9443

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 8bcebcc40ee67875c2c3fa3007d65944

December 28, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 8bcebcc40ee67875c2c3fa3007d65944SHA1: 5eea1993e7fa9d3786a64cea8116e6c51ff2533dANALYSIS DATE: 2022-12-28T10:11:24ZTTPS: T1012, T1005, T1081, T1222, T1082, T1060,...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 134[.]209[.]72[.]110:80

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 209[.]127[.]27[.]17:80

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 120[.]48[.]139[.]240:8011

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 39[.]101[.]67[.]58:443

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Stike Beacon Detected – 39[.]98[.]115[.]22:8988

December 28, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

abstract_random_red_code-990x400-1

BlueNoroff introduces new methods bypassing MoTW

December 28, 2022

BlueNoroff group is a financially motivated threat actor eager to profit from its cyberattack capabilities. We have published technical details...

Read More

BlackCat/ALPHV Ransomware Victim: ELOTECH – HACKED AND MORE THEN 100 GB DATA LEAKED!

December 28, 2022

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Read More

abstract-malware-990x400-1

Malware Analysis – djvu – 614fc2099e6a6f27944ece6715fd46d9

December 28, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 614fc2099e6a6f27944ece6715fd46d9SHA1: d69a68f031f5679d1b4672aefe21423b37d87b4dANALYSIS DATE: 2022-12-28T05:13:47ZTTPS: T1005, T1081, T1012, T1082, T1060, T1112,...

Read More

abstract-malware-990x400-1

Malware Analysis – discovery – f62c3007eccf750d07e911fd219c2b1c

December 28, 2022

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: f62c3007eccf750d07e911fd219c2b1cSHA1: 5fe513b3d9db6a8f74613eaac7ee2ae6a75465e7ANALYSIS DATE: 2022-12-28T05:25:52ZTTPS: T1082, T1012, T1005, T1081, T1112,...

Read More

abstract-malware-990x400-1

Malware Analysis – discovery – 4234902e03d0de35cfdf2e325804a4b0

December 28, 2022

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 4234902e03d0de35cfdf2e325804a4b0SHA1: e339fc0e19bbc25c5e9c32b5dbaee48b54c92f2bANALYSIS DATE: 2022-12-28T04:31:59ZTTPS: T1060, T1112, T1012, T1082, T1130 ScoreMeaningExample10Known badA malware family...

Read More

abstract-malware-990x400-1

Malware Analysis – – cd183f486dd18961805e9f4badecce69

December 28, 2022

Score: 6 MALWARE FAMILY: TAGS:MD5: cd183f486dd18961805e9f4badecce69SHA1: 55eadf655f975bc3652ed3f26d5424e53fd1d4d9ANALYSIS DATE: 2022-12-28T03:49:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Read More

Royal Ransomware Victim: www[.]buildersmutual[.]com

December 28, 2022

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Read More

BlackCat/ALPHV Ransomware Victim: ELOTECH – HACKED AND MORE THEN 100 GB DATA LEAKED!

December 28, 2022

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]116[.]208[.]81:8001

November 9, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 152[.]136[.]139[.]105:6666

November 9, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]120[.]70[.]161:6666

November 9, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 106[.]75[.]215[.]96:8081

November 9, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 118[.]25[.]85[.]198:8899

November 9, 2025