Beginning 2023 Google plans to rollout the initial Privacy Sandbox Beta
Google announced it will roll out the Privacy Sandbox system for Android in beta to a limited number of Android...
threatintel
DTrack activity targeting Europe and Latin America
Introduction DTrack is a backdoor used by the Lazarus group. Initially discovered in 2019, the backdoor remains in use three...
Malware Analysis – smokeloader – c75afff0fab61d5210bcc2c2bede60be
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c75afff0fab61d5210bcc2c2bede60beSHA1: a7f126e2305f6e15b7b2b0aaf878e27f74f7f817ANALYSIS DATE: 2022-11-16T03:16:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 68cc01ae9ae11af059f93d03053480b8
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:eternity, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Malware Analysis – persistence – fce023be1fb28b656e419c5c817deb73
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: fce023be1fb28b656e419c5c817deb73SHA1: 589b78fcde00583615e85c16b0a63d0806cf621cANALYSIS DATE: 2022-11-16T04:49:20ZTTPS: T1060, T1112, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 15103cc5f77da69f8563b4ba0e718d5e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 15103cc5f77da69f8563b4ba0e718d5eSHA1: 7a1655817f7439e02f8924822e771479bf986312ANALYSIS DATE: 2022-11-16T04:34:31ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – a9b1f92a3513a444bdeaaa0c04252c25
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – conti – ce3b141aa84f121127b37adecc908db8
Score: 10 MALWARE FAMILY: contiTAGS:family:conti, ransomware, upxMD5: ce3b141aa84f121127b37adecc908db8SHA1: c761ca6f202558b752efa76058264f01065d8171ANALYSIS DATE: 2022-11-16T05:38:52ZTTPS: T1107, T1490, T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – azov – 7675302777989b94bd9912988bd78937
Score: 10 MALWARE FAMILY: azovTAGS:family:azov, persistence, ransomware, spyware, stealer, wiperMD5: 7675302777989b94bd9912988bd78937SHA1: e888de6410255dcef79278437fab04766423bdeaANALYSIS DATE: 2022-11-16T05:38:52ZTTPS: T1060, T1112, T1012, T1120, T1082, T1005,...
Malware Analysis – ransomware – 07563c3b4988c221314fdab4b0500d2f
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 07563c3b4988c221314fdab4b0500d2fSHA1: a5f53c9b0f7956790248607e4122db18ba2b8bd9ANALYSIS DATE: 2022-11-16T05:38:50ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 8da4d636acf2965db8a07d006f7697fb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 8da4d636acf2965db8a07d006f7697fbSHA1: 9abff3c3aab27852709b5679e5212be96410cf4cANALYSIS DATE: 2022-11-16T05:34:21ZTTPS: T1053, T1082, T1005, T1081,...
Black Basta Ransomware Victim: Kessing Rechtsanwälte und Fachanwälte in PartGmbB
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – ransomware – a18ac3bfb1be7773182e1367c53ec854
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: a18ac3bfb1be7773182e1367c53ec854SHA1: c3d5c1f5ece8f0cf498d4812f981116ad7667286ANALYSIS DATE: 2022-11-16T05:38:55ZTTPS: T1005, T1081, T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 9be47a6394a32e371869298cdf4bdd56
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 9be47a6394a32e371869298cdf4bdd56SHA1: ca349c0ddd6cda3a53ada634c3c1e1d6f494da8aANALYSIS DATE: 2022-11-16T05:38:53ZTTPS: T1005, T1081, T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – medusalocker – 8474039d83805eb7b447325c3a8d1ebb
Score: 10 MALWARE FAMILY: medusalockerTAGS:family:medusalocker, family:neshta, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 8474039d83805eb7b447325c3a8d1ebbSHA1: a07d537f4253745a087709a9a07c449f84deed8dANALYSIS DATE: 2022-11-16T05:38:54ZTTPS: T1112, T1012, T1120, T1082,...
Malware Analysis – evasion – 6a90538a2e0c5cb52ab4bf050565012c
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 6a90538a2e0c5cb52ab4bf050565012cSHA1: ab9544a858fd0afd6d1f2996a44793edf3dbc344ANALYSIS DATE: 2022-11-16T05:38:54ZTTPS: T1490, T1107, T1060, T1112, T1012, T1120, T1082, T1018 ScoreMeaningExample10Known...
Malware Analysis – blacknet – 5ca4d167e4df2aca3495c6651d5333ff
Score: 10 MALWARE FAMILY: blacknetTAGS:family:blacknet, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, botnet:round3, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – discovery – 0169e63e83084ed1f794ab9a56dfaf9b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 0169e63e83084ed1f794ab9a56dfaf9bSHA1: 392d8cb7b3029bf7e0a22e5176fe2f2a0f050668ANALYSIS DATE: 2022-11-16T05:40:48ZTTPS: T1012, T1082, T1057 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – ransomware – ad1c2d9a87ebc01fa187f2f44d9a977c
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ad1c2d9a87ebc01fa187f2f44d9a977cSHA1: 03d871509a7369f5622e9ba0e21a14a7e813536dANALYSIS DATE: 2022-11-16T05:38:57ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – ab2c19f4c79bc7a2527ab4df85c69559
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: ab2c19f4c79bc7a2527ab4df85c69559SHA1: 60a692c6eaf34a042717f54dbec4372848d7a3e3ANALYSIS DATE: 2022-11-16T05:38:57ZTTPS: T1102, T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Happy birthday Security Affairs … 11 years together!
Happy BirthDay Security Affairs! Eleven years together! I launched Security Affairs for passion in November 2011 and since then the...
Cobalt Stike Beacon Detected – 18[.]181[.]9[.]176:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]74[.]250[.]130:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]136[.]132[.]93:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
