threatintel

Malware Analysis – –

October 5, 2022

Score: 8 MALWARE FAMILY: TAGS:MD5: SHA1: ANALYSIS DATE: 2022-10-05T13:12:54ZTTPS: T1012, T1082, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – chaos – 2f0c08446e6f6dd75aceaf67ebad2f77

October 5, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, persistence, ransomware, spyware, stealerMD5: 2f0c08446e6f6dd75aceaf67ebad2f77SHA1: a58dd9be0907debb8f39cb357e458a93612ac79cANALYSIS DATE: 2022-10-05T13:22:03ZTTPS: T1490, T1059, T1107, T1082, T1060, T1112,...

Malware Analysis – chaos – 2f0c08446e6f6dd75aceaf67ebad2f77

October 5, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, persistence, ransomware, spyware, stealerMD5: 2f0c08446e6f6dd75aceaf67ebad2f77SHA1: a58dd9be0907debb8f39cb357e458a93612ac79cANALYSIS DATE: 2022-10-05T13:22:01ZTTPS: T1490, T1059, T1107, T1060, T1112, T1082,...

Malware Analysis – smokeloader – ffcfc1526b2540403e83ffb80c1274a9

October 5, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – fc47e9571ca6ac5aa22494a8924c5303

October 5, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fc47e9571ca6ac5aa22494a8924c5303SHA1: 3f38e682284990961cec20317ef33e675dc20d43ANALYSIS DATE: 2022-10-05T14:27:13ZTTPS: T1060, T1112, T1082, T1012,...

Malware Analysis – djvu – ffcfc1526b2540403e83ffb80c1274a9

October 5, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:10:26ZTTPS: T1130, T1112, T1082,...

Malware Analysis – djvu – 95503e66b8b02be76b487665cd22127e

October 5, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95503e66b8b02be76b487665cd22127eSHA1: aa950f5da6313eea5b765e68ba5842316f7c31eaANALYSIS DATE: 2022-10-05T14:24:31ZTTPS: T1060, T1112, T1222, T1053,...

Malware Analysis – lockbit – a9fb78ede24ebca4b2802637a0752c45

October 5, 2022

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, ransomwareMD5: a9fb78ede24ebca4b2802637a0752c45SHA1: 994226d8a3ddaad76fade66c77958f00f3cf3d5aANALYSIS DATE: 2022-10-04T05:37:03ZTTPS: T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

threatintel

Malware Analysis – –

Malware Analysis – chaos – 2f0c08446e6f6dd75aceaf67ebad2f77

Malware Analysis – chaos – 2f0c08446e6f6dd75aceaf67ebad2f77

Malware Analysis – smokeloader – ffcfc1526b2540403e83ffb80c1274a9

Malware Analysis – djvu – fc47e9571ca6ac5aa22494a8924c5303

Malware Analysis – djvu – ffcfc1526b2540403e83ffb80c1274a9

Malware Analysis – djvu – 95503e66b8b02be76b487665cd22127e

Malware Analysis – lockbit – a9fb78ede24ebca4b2802637a0752c45

Erlik 2 – Vulnerable-Flask-App

Cobalt Stike Beacon Detected – 157[.]230[.]50[.]134:443

Cobalt Stike Beacon Detected – 5[.]44[.]42[.]49:80

Cobalt Stike Beacon Detected – 43[.]143[.]175[.]188:2096

Cobalt Stike Beacon Detected – 59[.]173[.]17[.]104:82

Cobalt Stike Beacon Detected – 49[.]235[.]95[.]50:87

Cobalt Stike Beacon Detected – 3[.]139[.]100[.]167:443

Cobalt Stike Beacon Detected – 42[.]192[.]151[.]207:80

Cobalt Stike Beacon Detected – 47[.]109[.]43[.]215:443

Cobalt Stike Beacon Detected – 152[.]136[.]232[.]171:8870

Brute Ratel C4 Detected – 79[.]3[.]12[.]7:9002

OnionPoison: malicious Tor Browser installer served through a popular Chinese YouTube channel

OnionPoison: infected Tor Browser installer distributed through popular YouTube channel

Cobalt Stike Beacon Detected – 156[.]96[.]157[.]101:80

Cobalt Stike Beacon Detected – 152[.]32[.]145[.]118:80

Cobalt Stike Beacon Detected – 72[.]18[.]215[.]170:2083

CVE Alert: CVE-2025-12619 – Tenda – A15

CVE Alert: CVE-2025-12617 – itsourcecode – Billing System

CVE Alert: CVE-2025-12622 – Tenda – AC10

CVE Alert: CVE-2025-12618 – Tenda – AC8

International Criminal Court Kicks Microsoft Office To The Curb

You may have missed