threatintel

BlackCat/ALPHV Ransomware Victim: rjyoung[.]com

October 26, 2022

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

BlackCat/ALPHV Ransomware Victim: KEMET

October 26, 2022

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Malware Analysis – ransomware – 52d96f2df97eb397a1b2784a68ef74ed

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 52d96f2df97eb397a1b2784a68ef74edSHA1: d9250ed8e39200ad846a1c27150ff4771658067eANALYSIS DATE: 2022-10-26T14:40:25ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 2b51aaca6642a3ab1ef5de8d825f624b

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2b51aaca6642a3ab1ef5de8d825f624bSHA1: 9b1ce692e85468fc4d1468f89dc284bb7b6507d9ANALYSIS DATE: 2022-10-26T14:40:20ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – smokeloader – 0013c6d1ce1fcf57839d07f8b8d616c9

October 26, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0013c6d1ce1fcf57839d07f8b8d616c9SHA1: 919274461f59829cb7e577c3f889ad3367214a33ANALYSIS DATE: 2022-10-26T14:16:34ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – wannacry – 84c82835a5d21bbcf75a61706d8ab549

October 26, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, persistence, ransomware, spyware, stealer, wormMD5: 84c82835a5d21bbcf75a61706d8ab549SHA1: 5ff465afaabcbf0150d1a3ab2c2e74f3a4426467ANALYSIS DATE: 2022-10-26T14:57:25ZTTPS: T1158, T1082, T1005, T1081, T1060,...

Black Basta Ransomware Victim: Associated Lighting Representatives

October 26, 2022

Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Black Basta Ransomware Victim: CADEPLOY

October 26, 2022

Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Malware Analysis – ransomware – 73c784d8dde1c8e36c564c218f6f05b9

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 73c784d8dde1c8e36c564c218f6f05b9SHA1: e8d2f1da10811d6fdff74b62489e12c79fe4597fANALYSIS DATE: 2022-10-26T15:23:36ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Malware Analysis – djvu – 2307a2ca803219351b4ee551498e43c2

October 26, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1636, botnet:1752, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...

Malware Analysis – ransomware – b8d2058d6fb946db2132b146645a1d02

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: b8d2058d6fb946db2132b146645a1d02SHA1: 66372af8eafebe4a15bf1a8ac130ce84f5087a6dANALYSIS DATE: 2022-10-26T15:23:25ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 1db7aac9e6f137fb5e8e75746d87d021

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 1db7aac9e6f137fb5e8e75746d87d021SHA1: 777ac1fa7790481dacaa49ad658497342034a0bdANALYSIS DATE: 2022-10-26T15:23:32ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – e6936132df6107c714daa77e0a51bfde

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e6936132df6107c714daa77e0a51bfdeSHA1: f3d8e569fcd1d4427561ef7543537f37d274ff7dANALYSIS DATE: 2022-10-26T15:23:41ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 8e94e5979a58065c28d7c48e61b38604

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 8e94e5979a58065c28d7c48e61b38604SHA1: 9ad68d5f1815123fe2fff5064d897bebfc633388ANALYSIS DATE: 2022-10-26T15:40:38ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – cb896a7e26d7d0101c29aa332eb51b95

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: cb896a7e26d7d0101c29aa332eb51b95SHA1: 5cbb6e6375bc071644781c62e6440321d20ff92cANALYSIS DATE: 2022-10-26T15:40:30ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – e7555b068e1137714a27476c4597d083

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e7555b068e1137714a27476c4597d083SHA1: e64188b39972adda1ddab18490d22b09dcc38d77ANALYSIS DATE: 2022-10-26T15:40:20ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 0b698d20cca3f11abd1c3dd4b1a906a1

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 0b698d20cca3f11abd1c3dd4b1a906a1SHA1: 860708438067e364565954799c180a36b24683a0ANALYSIS DATE: 2022-10-26T15:40:59ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 5ae73c5279da4bd3b3c1b37fcb36089b

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 5ae73c5279da4bd3b3c1b37fcb36089bSHA1: 660e507c5dfbe4462189f257bfc6e98be6b5facbANALYSIS DATE: 2022-10-26T15:40:52ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 3db300e0e26dcad20dec8131b2f40d61

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 3db300e0e26dcad20dec8131b2f40d61SHA1: 22742dc520f6a719c6597ee3eb4372983210df7bANALYSIS DATE: 2022-10-26T15:41:03ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – e456c63e9918872f3b96d0ea64e067a9

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e456c63e9918872f3b96d0ea64e067a9SHA1: 017ead499d553c03e8a657b982cb1e04065755e0ANALYSIS DATE: 2022-10-26T15:41:12ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – wannacry – a407f5ea005f9066a9e4d10043ed42ee

October 26, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: a407f5ea005f9066a9e4d10043ed42eeSHA1: f9d169ac4494643d599caf47a03f6a8cae9659c3ANALYSIS DATE: 2022-10-26T15:41:19ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – ransomware – bbb0df8d2a3aa0a53decd7e6efd9b3f2

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: bbb0df8d2a3aa0a53decd7e6efd9b3f2SHA1: 43af098289b601c68addc630bd6be3a39e5fec78ANALYSIS DATE: 2022-10-26T16:20:24ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – djvu – 24c4652bbef9fe01ef7feba43cc61df4

October 26, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1752, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan,...

Malware Analysis – ransomware – 2b4ba26c40aa1f6306dff7b81565f83b

October 26, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2b4ba26c40aa1f6306dff7b81565f83bSHA1: 3e0a71a30b31fe253975885191c2c1d6ae9a9805ANALYSIS DATE: 2022-10-26T16:20:18ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...

threatintel

BlackCat/ALPHV Ransomware Victim: rjyoung[.]com

BlackCat/ALPHV Ransomware Victim: KEMET

Malware Analysis – ransomware – 52d96f2df97eb397a1b2784a68ef74ed

Malware Analysis – ransomware – 2b51aaca6642a3ab1ef5de8d825f624b

Malware Analysis – smokeloader – 0013c6d1ce1fcf57839d07f8b8d616c9

Malware Analysis – wannacry – 84c82835a5d21bbcf75a61706d8ab549

Black Basta Ransomware Victim: Associated Lighting Representatives

Black Basta Ransomware Victim: CADEPLOY

Malware Analysis – ransomware – 73c784d8dde1c8e36c564c218f6f05b9

Malware Analysis – djvu – 2307a2ca803219351b4ee551498e43c2

Malware Analysis – ransomware – b8d2058d6fb946db2132b146645a1d02

Malware Analysis – ransomware – 1db7aac9e6f137fb5e8e75746d87d021

Malware Analysis – ransomware – e6936132df6107c714daa77e0a51bfde

Malware Analysis – ransomware – 8e94e5979a58065c28d7c48e61b38604

Malware Analysis – ransomware – cb896a7e26d7d0101c29aa332eb51b95

Malware Analysis – ransomware – e7555b068e1137714a27476c4597d083

Malware Analysis – ransomware – 0b698d20cca3f11abd1c3dd4b1a906a1

Malware Analysis – ransomware – 5ae73c5279da4bd3b3c1b37fcb36089b

Malware Analysis – ransomware – 3db300e0e26dcad20dec8131b2f40d61

Malware Analysis – ransomware – e456c63e9918872f3b96d0ea64e067a9

Malware Analysis – wannacry – a407f5ea005f9066a9e4d10043ed42ee

Malware Analysis – ransomware – bbb0df8d2a3aa0a53decd7e6efd9b3f2

Malware Analysis – djvu – 24c4652bbef9fe01ef7feba43cc61df4

Malware Analysis – ransomware – 2b4ba26c40aa1f6306dff7b81565f83b

Cobalt Strike Beacon Detected – 121[.]43[.]37[.]134:4434

Cobalt Strike Beacon Detected – 119[.]29[.]231[.]118:443

Cobalt Strike Beacon Detected – 39[.]101[.]74[.]162:443

Cobalt Strike Beacon Detected – 8[.]218[.]112[.]112:8880

Cobalt Strike Beacon Detected – 47[.]109[.]48[.]57:443

You may have missed