Cobalt Stike Beacon Detected – 138[.]68[.]188[.]101:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 139[.]155[.]90[.]81:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – xorist – e98a127ed90e67cd30344bdb691384a1
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, upxMD5: e98a127ed90e67cd30344bdb691384a1SHA1: a79fe32686a67aa3011d397460d748b3d149d0beANALYSIS DATE: 2022-10-12T09:58:05ZTTPS: T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 8119c78b7cfb7d9ce37286ec9fc263e2
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 8119c78b7cfb7d9ce37286ec9fc263e2SHA1: 986ba7a5714ad5b0de0d040d1c066389bcb81a67ANALYSIS DATE: 2022-10-12T10:21:03ZTTPS: T1059, T1107, T1490, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Malware Analysis – persistence – 5569ef5cc1b99eee164438d95d601baf
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 5569ef5cc1b99eee164438d95d601bafSHA1: 27a889e1542b6ebe68130db3618c0de4f40fadb5ANALYSIS DATE: 2022-10-12T10:01:04ZTTPS: T1107, T1490, T1060, T1112, T1005, T1081, T1082, T1012,...
Malware Analysis – persistence – 6c42c7957278c7ac09b111490fc93cc1
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 6c42c7957278c7ac09b111490fc93cc1SHA1: 29f9b35533f1a6dbf47ed5dfb4144c33d33ce91bANALYSIS DATE: 2022-10-12T09:58:05ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Black Basta Ransomware Victim: Quality Telecom Consultants Inc
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: SMART Mechanical Solutions
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: AMPORTS
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: ALFATECH
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: CSW GmbH
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: Michael Sullivan & Associates
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 31[.]41[.]244[.]192:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 46[.]175[.]148[.]74:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 46[.]175[.]148[.]53:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]94[.]214:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 9dead8d771b215649c86c1374a591799
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9dead8d771b215649c86c1374a591799SHA1: 5298328fabb9c73665793e0b93051567408db8a7ANALYSIS DATE: 2022-10-12T10:22:17ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – smokeloader – 5d93dd4f046d16989f0dc53f6bb3326f
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5d93dd4f046d16989f0dc53f6bb3326fSHA1: cc20ab38c977b233a38730174b58bb04a7d1e646ANALYSIS DATE: 2022-10-12T10:35:48ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 6801db35f78978c4b99f6d78a5753eff
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6801db35f78978c4b99f6d78a5753effSHA1: afeb1ce64b59ea20876bc2fee8a70023e56d6797ANALYSIS DATE: 2022-10-12T10:23:03ZTTPS: T1053, T1005, T1081, T1222,...
Malware Analysis – ermac – 24b1ce69f7066a7bc9bc32e3c969d8d9
Score: 10 MALWARE FAMILY: ermacTAGS:family:ermac, banker, evasion, infostealer, ransomware, trojanMD5: 24b1ce69f7066a7bc9bc32e3c969d8d9SHA1: f36ff949217f3340a717a0e5a4d079b254b876beANALYSIS DATE: 2022-10-12T10:25:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
VMware has yet to fix CVE-2021-22048 flaw in vCenter Server disclosed one year ago
VMware has yet to address the CVE-2021-22048 privilege escalation vulnerability in vCenter Server disclosed in November 2021. VMware warns customers...
LockBit affiliates compromise Microsoft Exchange servers to deploy ransomware
Lockbit ransomware affiliates are compromising Microsoft Exchange servers to deploy their ransomware, experts warn. South-Korean cybersecurity firm AhnLab reported that...
LockBit 3.0 Ransomware Victim: northwestpipe[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: bakkerheftrucks[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
