Caffeine, a new Phishing-as-a-Service toolkit available in the underground
Researchers warn of a new phishing-as-a-service (PhaaS) toolkit, called Caffeine, which is being used by cybercriminals. In March 2022, Mandiant researchers...
Month: October 2022
BlackCat/ALPHV Ransomware Victim: ( POST HAS BEEN UPDATED 1400GB LEAK AVAILABLE ) County Suffolk and contractors
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – evasion – 7cfec6af8fc722e7922e654a5c4ce6d0
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 7cfec6af8fc722e7922e654a5c4ce6d0SHA1: b36349145448e8685619e074281b92ca18524b5aANALYSIS DATE: 2022-10-11T11:43:18ZTTPS: T1088, T1089, T1112, T1082, T1012, T1060,...
Malware Analysis – djvu – 89259c54c606cd981a4009df679b4f7b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 89259c54c606cd981a4009df679b4f7bSHA1: 8214aec5f70da8e9a6e0790ff1589f09ccbc4f13ANALYSIS DATE: 2022-10-11T14:21:03ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – 88e9a7a0194592061b2aa9b2c6b45e88
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 88e9a7a0194592061b2aa9b2c6b45e88SHA1: f5fbc5029ec4f1f6ae9f05f2d9d374fe1b878758ANALYSIS DATE: 2022-10-11T14:21:53ZTTPS: T1060, T1112, T1222, T1082, T1053 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 6585120009f7f3f555ad187423ccad10
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 6585120009f7f3f555ad187423ccad10SHA1: 087e99b2a0c741b99d5d90ec6c3cbc0f1ae8505fANALYSIS DATE: 2022-10-11T11:43:11ZTTPS: T1158, T1112, T1012, T1082, T1060, T1088,...
Malware Analysis – djvu – f6a2ea7b243ba21de0aa38538911b4e8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f6a2ea7b243ba21de0aa38538911b4e8SHA1: 6dc665a37038be83d89635c773cc65562e832421ANALYSIS DATE: 2022-10-11T14:28:49ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – wannacry – 9f75c295e2503a82fd1478aa72cbd221
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 9f75c295e2503a82fd1478aa72cbd221SHA1: 09fb701ddd78884d39a1669a0441a51976cd10caANALYSIS DATE: 2022-10-11T14:48:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – e5663047e91eb6e71f8867932935bbe1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: e5663047e91eb6e71f8867932935bbe1SHA1: 3062c30c3e67a7bec4a73e477127d01708114f86ANALYSIS DATE: 2022-10-11T14:32:02ZTTPS:...
Malware Analysis – djvu – eb35897a35bb177b8604463adb69227d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: eb35897a35bb177b8604463adb69227dSHA1: 347ecca1055ef76d3e72e76d33090bfecd803c6aANALYSIS DATE: 2022-10-11T14:34:11ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 2b4abbbbf4d7cdfe36d1d4d4ce541540
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 2b4abbbbf4d7cdfe36d1d4d4ce541540SHA1: 6bb6f1651647fe02565312685ab25b1c14c8efb1ANALYSIS DATE: 2022-10-11T14:57:50ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – wannacry – 59ced1d2c417c6ebd0a2a1c605e6062b
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 59ced1d2c417c6ebd0a2a1c605e6062bSHA1: 265950bb706582290ad3876527eb840adeb0a463ANALYSIS DATE: 2022-10-11T14:49:03ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – dcrat – 94c6ad8cf97c3f3651dfd705cb15ee14
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:45e326db2f0dcd074fdd0d3db7fe304a, botnet:517, botnet:buildnewdomain, backdoor, collection, discovery, infostealer, persistence, ransomware, rat,...
Malware Analysis – djvu – 70f3545a5937c5f241b31c4e6ec35ee2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 70f3545a5937c5f241b31c4e6ec35ee2SHA1: 8cfeceb886dc49e758d267353b9685e5dd94b326ANALYSIS DATE: 2022-10-11T15:32:19ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – djvu – c092559ffc2f7a60c82904685ef29e74
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c092559ffc2f7a60c82904685ef29e74SHA1: 31a31b8575f3711a6cd8df7252466597a3f94b20ANALYSIS DATE: 2022-10-11T15:35:47ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – ransomware – efb844ac2e9cfbef9863a56931aa7a7a
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: efb844ac2e9cfbef9863a56931aa7a7aSHA1: 3ae12cb9cd883eaefbdf9a3ecfb62f5177603f9bANALYSIS DATE: 2022-10-11T15:53:04ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 74aa4f5857bf44680d9fa8b86f6f5705
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 74aa4f5857bf44680d9fa8b86f6f5705SHA1: e72accda4aece3442c0a2d9ea5819dbc72cb51ffANALYSIS DATE: 2022-10-11T15:53:04ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 802ba5f6817ec4339a24a669be403805
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 802ba5f6817ec4339a24a669be403805SHA1: a3bc146d4ebb1a04e489870c5b2e55f3a5c8462dANALYSIS DATE: 2022-10-11T15:53:04ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 9e5667e13ac62f847f040d374c9b381c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9e5667e13ac62f847f040d374c9b381cSHA1: 6b657bb4a96acf80e477d971a777bd0b96cf019cANALYSIS DATE: 2022-10-11T16:14:30ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – smokeloader – 82bc99b63c7b78418b1ce9c51f58bf2e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 82bc99b63c7b78418b1ce9c51f58bf2eSHA1: 42e782e67c1fd12c8ebcba6cab8fba713871b472ANALYSIS DATE: 2022-10-11T16:32:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – wannacry – b583e353ce412edcb4128c251901db5e
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: b583e353ce412edcb4128c251901db5eSHA1: 482a398c3e8cd2e58f56a5830573b7022456c4d6ANALYSIS DATE: 2022-10-11T15:53:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – bcb91ccd549d5188b60c5059a5832d23
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bcb91ccd549d5188b60c5059a5832d23SHA1: da3b892c93dcf4a09c3fd63b7bfeaceb9b8527b5ANALYSIS DATE: 2022-10-11T16:56:00ZTTPS: T1060, T1112, T1005, T1081,...
Monkey365 – Tool For Security Consultants To Easily Conduct Not Only Microsoft 365, But Also Azure Subscriptions And Azure Active Directory Security Configuration Reviews
Monkey365 is an Open Source security tool that can be used to easily conduct not only Microsoft 365, but also...
Malware Analysis – danabot – 2f303d03187136a45d99bc73ad87f37a
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:buildnewdomain, backdoor, banker, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
