Black Basta Ransomware Victim: Kessing Rechtsanwälte und Fachanwälte in PartGmbB
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
threatintel
Malware Analysis – banker – 2d4806f5971d10dc44a5589eabbafbe3
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 2d4806f5971d10dc44a5589eabbafbe3SHA1: 75f314e523c012f66565413b43953a3adb2ae3b2ANALYSIS DATE: 2022-11-15T16:15:29ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 9649ce37c11a913d3895a6e0b6afb4d2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9649ce37c11a913d3895a6e0b6afb4d2SHA1: c7bf4ae4bea1c2466d81857d13c498ac6d366e96ANALYSIS DATE: 2022-11-15T16:50:37ZTTPS: T1060, T1112, T1053, T1012,...
Malware Analysis – amadey – 0336dbda5cc02d19df642fe601b80663
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:dbffbdbc9786a5c270e6dd2d647e18ea, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence,...
Malware Analysis – amadey – 566efc86f5da74bca32b57c2dd25d997
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:123, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware,...
Malware Analysis – djvu – eb2feaca9eb74fbfde53174b2727e664
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: eb2feaca9eb74fbfde53174b2727e664SHA1: ab6e3ec972c99630c38f26aa8911527aa668263eANALYSIS DATE: 2022-11-15T17:29:11ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – – ac38a1394afcb482971389143276a76d
Score: 1 MALWARE FAMILY: TAGS:MD5: ac38a1394afcb482971389143276a76dSHA1: 5425bc88a602900b1e1c329e9b5bbd135afeaff6ANALYSIS DATE: 2022-11-15T17:42:01ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 69aa7889fb018ab02aa828d3a936c399
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 69aa7889fb018ab02aa828d3a936c399SHA1: ab7891047c78bf227ca8bcba37dfbf223a76e345ANALYSIS DATE: 2022-11-15T17:51:03ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – djvu – 81919e4ec02b17887b81734b8c666199
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:nymaim, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer,...
Experts revealed details of critical SQLi and access issues in Zendesk Explore
Researchers disclosed technical details of critical SQLi and access vulnerabilities in the Zendesk Explore Service. Cybersecurity researchers at Varonis disclosed...
China-linked APT Billbug breached a certificate authority in Asia
A suspected China-linked APT group breached a digital certificate authority in Asia as part of a campaign aimed at government...
LockBit 3.0 Ransomware Victim: linkplus[.]com[.]hk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: amend[.]com[.]br
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Dismember – Scan Memory For Secrets And More
Dismember is a command-line toolkit for Linux that can be used to scan the memory of all processes (or particular...
Cobalt Stike Beacon Detected – 13[.]231[.]199[.]195:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 13[.]231[.]199[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]108[.]248[.]6:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]144[.]200[.]160:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 34[.]81[.]97[.]209:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 40[.]112[.]57[.]238:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – azov – 2009a024db69830d3e2154199c547bed
Score: 10 MALWARE FAMILY: azovTAGS:family:azov, persistence, ransomware, spyware, stealer, wiperMD5: 2009a024db69830d3e2154199c547bedSHA1: 560e504a951149d8eb7a90c8d087ea45cd2fde40ANALYSIS DATE: 2022-11-15T09:11:38ZTTPS: T1012, T1120, T1082, T1060, T1112, T1005,...
Malware Analysis – djvu – 52740e55ccb3887f6910e879b4fe7147
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 52740e55ccb3887f6910e879b4fe7147SHA1: 2d7106663a0e247f988a8abcd1cc2f18af8235a5ANALYSIS DATE: 2022-11-15T09:02:27ZTTPS: T1005, T1081, T1053, T1082,...
Cobalt Stike Beacon Detected – 81[.]68[.]85[.]250:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 4b2e849543b0ecaec1885170a5ef5243
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 4b2e849543b0ecaec1885170a5ef5243SHA1: fc70407cbe422a8ee12be63a520d8638e382e9aaANALYSIS DATE: 2022-11-15T10:06:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
