Cobalt Stike Beacon Detected – 77[.]73[.]133[.]80:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2022
Cobalt Stike Beacon Detected – 185[.]244[.]175[.]231:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – efc33baa8c7f69b7590a8944f1b4845a
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: efc33baa8c7f69b7590a8944f1b4845aSHA1: 92ea17ab992b030e70858ece30f55be619961419ANALYSIS DATE: 2022-10-23T21:26:12ZTTPS: T1088, T1089, T1112, T1060, T1004, T1158, T1018, T1012,...
Cobalt Stike Beacon Detected – 91[.]213[.]50[.]3:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 5aa527e4144d3a2aeeecefb782344920
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 5aa527e4144d3a2aeeecefb782344920SHA1: 1784b83943a6eaf703a949fde203016b4a890e2cANALYSIS DATE: 2022-10-23T21:26:15ZTTPS: T1091, T1088, T1089, T1112, T1060, T1004, T1158, T1491,...
Malware Analysis – – 5bf4fb0a44f3a28b8075d38d0a5434ea
Score: 1 MALWARE FAMILY: TAGS:MD5: 5bf4fb0a44f3a28b8075d38d0a5434eaSHA1: 32b731cf212bc10d5b92d4ecf8729b0f14d40d30ANALYSIS DATE: 2022-10-23T21:06:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 406da3bee42da4faa18d99603bbbc687
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 406da3bee42da4faa18d99603bbbc687SHA1: 1b9ff420e17f1c6f4954bdd5195ef4d418ac8e67ANALYSIS DATE: 2022-10-23T21:53:09ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – – 376e7c861b5fe10a0af282cd7bc6056d
Score: 1 MALWARE FAMILY: TAGS:MD5: 376e7c861b5fe10a0af282cd7bc6056dSHA1: b2750339e8f0dccd0277ea78c6c0038019d3abb0ANALYSIS DATE: 2022-10-23T22:03:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – dcrat – 01b3b5a2380d81305a2701f1953357c5
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, botnet:nam7, botnet:slovarikinstalls, backdoor, brand:microsoft, collection, discovery, infostealer, persistence,...
Malware Analysis – djvu – 0ecd97e60d5ae5f2b47749ac3cb9bef1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 0ecd97e60d5ae5f2b47749ac3cb9bef1SHA1: fada1ee6b9918d111015cc5b0b19091ccf433427ANALYSIS DATE: 2022-10-23T21:54:26ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – – 77b3d8d5850b5735e58db6fc281f763f
Score: 1 MALWARE FAMILY: TAGS:MD5: 77b3d8d5850b5735e58db6fc281f763fSHA1: cd4813d5533f1894f8b6ece019c577f46d5fa4ecANALYSIS DATE: 2022-10-23T22:23:29ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – dcrat – f31a3812e736277f4fb6820e14578719
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, botnet:nam7, botnet:slovarikinstalls, backdoor, brand:microsoft, collection, discovery, infostealer, persistence,...
Malware Analysis – banker – 12e6ff97e8817baa0a862aa030a0911a
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 12e6ff97e8817baa0a862aa030a0911aSHA1: 6850809714fa74ce2d14eac8ace4041d6b4c7afaANALYSIS DATE: 2022-10-23T22:55:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – d470440fe7763d19b1e6bdeef594e219
Score: 1 MALWARE FAMILY: TAGS:MD5: d470440fe7763d19b1e6bdeef594e219SHA1: f36fbb61d0c7e13f5e11f4601ee0fbf9609dddf8ANALYSIS DATE: 2022-10-23T22:59:22ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Security Affairs newsletter Round 390
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Hackers stole sensitive data from Iran’s atomic energy agency
Iran’s atomic energy agency claims that alleged state-sponsored hackers have compromised its email system. Iran’s atomic energy agency revealed on...
Malware Analysis – djvu – 561fcb94c38fccd8243979355ed1fd9c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 561fcb94c38fccd8243979355ed1fd9cSHA1: edc2506e2fa920e92e9ab982eab2050802d337bbANALYSIS DATE: 2022-10-23T14:10:33ZTTPS: T1005, T1081, T1222, T1082,...
Malware Analysis – wannacry – 0eee97a373a61b19331f61e8858ec1cc
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 0eee97a373a61b19331f61e8858ec1ccSHA1: 5e993119a6b1fd9735bbffb8c588bf0914539712ANALYSIS DATE: 2022-10-23T15:20:21ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – persistence – 567315c1e449eea7e8538205cb4cc7bb
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 567315c1e449eea7e8538205cb4cc7bbSHA1: 6ab1ee7f5897328fc58883256f19878c4c465d35ANALYSIS DATE: 2022-10-23T15:09:03ZTTPS: T1082, T1107, T1490, T1091, T1060, T1112, T1005, T1081...
Malware Analysis – – 416f169b4d316eb3f52682ceba73cbdb
Score: 1 MALWARE FAMILY: TAGS:MD5: 416f169b4d316eb3f52682ceba73cbdbSHA1: 164f6ddfa7be987bb116269c22a30f26989e9721ANALYSIS DATE: 2022-10-23T15:03:30ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – fdce9fda78956bd5b7af1ff002a60a25
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fdce9fda78956bd5b7af1ff002a60a25SHA1: 51199303d78f1ab6241eaba7fae0a1972dc13c0cANALYSIS DATE: 2022-10-23T15:22:28ZTTPS: T1082, T1005, T1081, T1053,...
Malware Analysis – persistence – 4d7a534ad63b166f3d51a2015a8b65f2
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 4d7a534ad63b166f3d51a2015a8b65f2SHA1: f745a682cf28df6542711ff6895c3377fbb1fc99ANALYSIS DATE: 2022-10-23T16:00:26ZTTPS: T1082, T1107, T1490, T1091, T1060, T1112, T1005, T1081...
Malware Analysis – ransomware – 282895b302ae4886396fa2515fdc9609
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 282895b302ae4886396fa2515fdc9609SHA1: 4c92752edde8c9b767a80d644089c2d767e4dd23ANALYSIS DATE: 2022-10-23T15:40:13ZTTPS: T1018, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – 0da5fe0091c4680a9040dfba599d7ec6
Score: 1 MALWARE FAMILY: TAGS:MD5: 0da5fe0091c4680a9040dfba599d7ec6SHA1: 1b3aa73b60197242b4bcc57ca39c0d9f49d2d7d4ANALYSIS DATE: 2022-10-23T15:56:55ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
