Cuba Ransomware Victim: Patton
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
threatintel
Malware Analysis – blackbasta – ac625552601c190656dcb8cf4c21cd1d
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: ac625552601c190656dcb8cf4c21cd1dSHA1: acad7a91c2812a0652d62f252774454c217666e9ANALYSIS DATE: 2022-11-30T22:38:00ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 795e5e08e60da5d2446eef36e474668f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 795e5e08e60da5d2446eef36e474668fSHA1: 6783dd6bba712949574a02a9559fa533a88cc772ANALYSIS DATE:...
Malware Analysis – blackbasta – 998022b70d83c6de68e5bdf94e0f8d71
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: 998022b70d83c6de68e5bdf94e0f8d71SHA1: b87a947f3e85701fcdadd733e9b055a65a3b1308ANALYSIS DATE: 2022-11-30T22:47:38ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – blackbasta – 3f400f30415941348af21d515a2fc6a3
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, evasion, ransomwareMD5: 3f400f30415941348af21d515a2fc6a3SHA1: bd0bf9c987288ca434221d7d81c54a47e913600aANALYSIS DATE: 2022-11-30T21:06:57ZTTPS: T1490, T1107, T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – blackbasta – eff424376edca5680b90ea9fedad163d
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, evasion, ransomwareMD5: eff424376edca5680b90ea9fedad163dSHA1: 3c13c1e54d2d7991c1c3452ae89888a8e7a47763ANALYSIS DATE: 2022-11-30T23:14:05ZTTPS: T1490, T1107, T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 9f86d39cef8f2d55ee153628c599f125
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: 9f86d39cef8f2d55ee153628c599f125SHA1: ffcca079744b576dec190e17f8a96f6283875729ANALYSIS DATE: 2022-11-30T22:54:30ZTTPS: T1060, T1112, T1222, T1082, T1012,...
Malware Analysis – blackbasta – a2086f41bc06adc69517bc0d9c07bf6e
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomware, upxMD5: a2086f41bc06adc69517bc0d9c07bf6eSHA1: 1d30388c1235da56a2f17d645f0a66ead7b59159ANALYSIS DATE: 2022-11-30T23:19:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – blackbasta – 267d5c3137d313ce1a86c2f255a835e6
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomware, spyware, stealerMD5: 267d5c3137d313ce1a86c2f255a835e6SHA1: c7a37c0edeffd23777cca44f9b49076be1bd43e6ANALYSIS DATE: 2022-11-30T23:08:46ZTTPS: T1491, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Cobalt Stike Beacon Detected – 1[.]14[.]107[.]106:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – blackbasta – adb3cf03e9be744107e61bd7de4c26bd
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: adb3cf03e9be744107e61bd7de4c26bdSHA1: cc7ea6bb6787df664adb69022546c42f5f409653ANALYSIS DATE: 2022-11-30T23:37:05ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 7349fec1e2af4aee2a5548a8ed226641
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 7349fec1e2af4aee2a5548a8ed226641SHA1: bd74b4df28c8f147e1d36808419b6607a67e37d5ANALYSIS DATE: 2022-11-30T23:31:03ZTTPS: T1082, T1053, T1012, T1060,...
Malware Analysis – blackbasta – fe8dae06d4b9165c6be675e184bfaca9
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: fe8dae06d4b9165c6be675e184bfaca9SHA1: 5244f99411acdf30ca6832b2e6352afdd68c88f3ANALYSIS DATE: 2022-11-30T23:43:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – blackbasta – f05dac112cd3174c385d10158b6080fb
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: f05dac112cd3174c385d10158b6080fbSHA1: 579b245a6609903d804f957083b9e0b2ed145f5aANALYSIS DATE: 2022-11-30T23:49:27ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 42[.]192[.]55[.]149:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]156[.]166[.]154:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]40[.]50[.]219:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 38[.]242[.]255[.]222:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Google links three exploitation frameworks to Spanish commercial spyware vendor Variston
Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. While tracking the...
Malware Analysis – – 0a2495eb99d3ec6f57d00b58f390e840
Score: 3 MALWARE FAMILY: TAGS:MD5: 0a2495eb99d3ec6f57d00b58f390e840SHA1: 50051ae2a4f3656eaf0400f54d6d19510642a73cANALYSIS DATE: 2022-11-29T10:23:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 3e55f3f5c1b95a60a127ff835216c973
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 3e55f3f5c1b95a60a127ff835216c973SHA1: 7391def32cf4fd471d747168374283fcfc94ebb4ANALYSIS DATE: 2022-11-29T09:54:55ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – discovery – 249b082c5c864e497bc8fe3e122f3fd0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 249b082c5c864e497bc8fe3e122f3fd0SHA1: 244b0104a4541e81d50e871cff7a9e0bc9996662ANALYSIS DATE: 2022-11-29T10:01:08ZTTPS: T1082, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – evasion – 6c6056a7353a8cf8744fe608cea84730
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 6c6056a7353a8cf8744fe608cea84730SHA1: 6734e499e0de7fe55b3959d4cab063c6da33ca21ANALYSIS DATE: 2022-11-29T11:12:24ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 0f0c5c2b3c33b906025d2f5b8a280ddb
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 0f0c5c2b3c33b906025d2f5b8a280ddbSHA1: 24b8e47c4f379b750fe76899a5c39277569081c6ANALYSIS DATE: 2022-11-30T15:11:14ZTTPS: T1491, T1112, T1004 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
