Cobalt Stike Beacon Detected – 176[.]113[.]115[.]102:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2022
Cobalt Stike Beacon Detected – 146[.]70[.]53[.]165:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 170[.]178[.]217[.]120:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]133[.]80:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – 69f8758ed98e98659611e7cfbbeddcc0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 69f8758ed98e98659611e7cfbbeddcc0SHA1: 2206ad1f11531b07bbbd08eef062844ce8944738ANALYSIS DATE: 2022-10-11T08:21:19ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 0cb4753490c6383c0005aa3c025d16c7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 0cb4753490c6383c0005aa3c025d16c7SHA1: 7fd69a77ece673870edff6d18cc49efedadaf366ANALYSIS DATE: 2022-10-11T08:21:06ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – smokeloader – a156800b9afd9e30ffce8aa6e89d6cfb
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a156800b9afd9e30ffce8aa6e89d6cfbSHA1: 7b0769c3164faf45d071a0da7e8fafe0eaf4fc82ANALYSIS DATE: 2022-10-11T08:33:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – 63fbbac40a124e5f40fb768acb4df6c1
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 63fbbac40a124e5f40fb768acb4df6c1SHA1: 90ae3913d6f89f99e5d4baa38133d306e9b1583eANALYSIS DATE: 2022-10-11T08:27:31ZTTPS: T1060, T1112, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – danabot – a156800b9afd9e30ffce8aa6e89d6cfb
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: a156800b9afd9e30ffce8aa6e89d6cfbSHA1: 7b0769c3164faf45d071a0da7e8fafe0eaf4fc82ANALYSIS...
Malware Analysis – smokeloader – 32a51d488c8a68eedb7221fc7e7ee196
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 32a51d488c8a68eedb7221fc7e7ee196SHA1: 98a0bef751da37a0bcbc6961ce3a5eaab705f311ANALYSIS DATE: 2022-10-11T09:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 7545dc45d86663ee45aff24419cc15ac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 7545dc45d86663ee45aff24419cc15acSHA1: adadfbebd62e1f3890d74200ecd671b713a7e56cANALYSIS DATE: 2022-10-11T08:34:21ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – smokeloader – 32a51d488c8a68eedb7221fc7e7ee196
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 32a51d488c8a68eedb7221fc7e7ee196SHA1: 98a0bef751da37a0bcbc6961ce3a5eaab705f311ANALYSIS DATE: 2022-10-11T09:05:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – koxic – 5a44e1d5691ec9395281123ea0bd501f
Score: 10 MALWARE FAMILY: koxicTAGS:family:koxic, evasion, ransomware, trojanMD5: 5a44e1d5691ec9395281123ea0bd501fSHA1: 64566d5049479227d2eff3d983b127c0339974cdANALYSIS DATE: 2022-10-11T09:19:45ZTTPS: T1018, T1082, T1059, T1112, T1031, T1089 ScoreMeaningExample10Known badA...
Malware Analysis – danabot – 32a51d488c8a68eedb7221fc7e7ee196
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:buildnewdomain, backdoor, banker, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – smokeloader – 7a14753737a3de00a01d7c0bcfa52230
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 7a14753737a3de00a01d7c0bcfa52230SHA1: f55cfee97f76001ceb503809570faaa744886d5aANALYSIS DATE: 2022-10-11T09:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 5564c4680da43fb5501cd028b43531f5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 5564c4680da43fb5501cd028b43531f5SHA1: 0e11e3f578c5271423bb9ace237fb2bebe496444ANALYSIS DATE: 2022-10-11T09:48:54ZTTPS: T1082, T1012, T1060, T1112,...
Malware Analysis – danabot – fd76a2d6b3edde0300d09a6143cbf883
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:buildnewdomain, backdoor, banker, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – djvu – 7a14753737a3de00a01d7c0bcfa52230
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, stealer, trojanMD5: 7a14753737a3de00a01d7c0bcfa52230SHA1: f55cfee97f76001ceb503809570faaa744886d5aANALYSIS DATE: 2022-10-11T09:51:59ZTTPS: T1082,...
Malware Analysis – djvu – 335d895837cd0451a60057a9b84c81bc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 335d895837cd0451a60057a9b84c81bcSHA1: a3846bce811b7150c30719f7599e700d0a154816ANALYSIS DATE: 2022-10-11T10:00:33ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – smokeloader – fd76a2d6b3edde0300d09a6143cbf883
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fd76a2d6b3edde0300d09a6143cbf883SHA1: 5b5fb81c75a8ffb50b6b29de69eb324818948aa6ANALYSIS DATE: 2022-10-11T10:31:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Samsung Mobile devices directory traversal | CVE-2022-39858
NAME Samsung Mobile devices directory traversal Platforms Affected:Samsung mobile devicesRisk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Samsung Mobile devices could allow a local...
Tesla Model 3 privilege escalation | CVE-2022-42430
NAME Tesla Model 3 privilege escalation Platforms Affected:Tesla Model 3Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Tesla Model 3 could allow a local...
Linux Kernel code execution |
NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.4 Linux Kernel 5.10 Linux Kernel 5.15 Linux Kernel 5.19Risk Level:8.4Exploitability:Proof of...
ZoneMinder security bypass | CVE-2022-39289
NAME ZoneMinder security bypass Platforms Affected:ZoneMinder ZoneMinder 1.36.26 ZoneMinder ZoneMinder 1.37.23Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION ZoneMinder could allow a remote attacker...
