Cobalt Stike Beacon Detected – 8[.]142[.]11[.]169:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2022
Cobalt Stike Beacon Detected – 143[.]198[.]154[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]64[.]32[.]174:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 37[.]1[.]215[.]252:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 7c76a982bb6b0733ebd8ac0b8c3229e0
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 7c76a982bb6b0733ebd8ac0b8c3229e0SHA1: 2709aa4c2e05fc106c31289caae76b04882b2c19ANALYSIS DATE: 2022-10-21T19:24:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 7652b0483d37bd356614b3888ab37dc0
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 7652b0483d37bd356614b3888ab37dc0SHA1: e582f54d1ba4baeadc11c1e0d92f1cf4ff3239feANALYSIS DATE: 2022-10-21T19:24:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 62cf2c0bbbbd750f10f2ceada62cba80
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 62cf2c0bbbbd750f10f2ceada62cba80SHA1: 6c52bfdf172a1762fbf003e346ade681b46b702dANALYSIS DATE: 2022-10-21T19:24:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 793c23884b769e0561ac51e543d20cf0
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 793c23884b769e0561ac51e543d20cf0SHA1: e4aa8deef807ded18edc553aabfedb33a8cdf483ANALYSIS DATE: 2022-10-21T19:24:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 45[.]66[.]151[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]105[.]14[.]22:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]244[.]73[.]220:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]101[.]35[.]71:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – 9d90ec66bb19ef146bab226bea33179f
Score: 1 MALWARE FAMILY: TAGS:MD5: 9d90ec66bb19ef146bab226bea33179fSHA1: be8e6a3c530379d93bd4da368ef63feed975eeebANALYSIS DATE: 2022-10-21T19:25:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – f3d0f216082efa741c8bfd2d48f44f93
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f3d0f216082efa741c8bfd2d48f44f93SHA1: aa95deb15b0010136901bf38cd75db7956b6a762ANALYSIS DATE: 2022-10-22T20:16:28ZTTPS: T1082, T1053, T1012, T1060,...
Malware Analysis – djvu – 168af1f71f98c7211ff6ba66d13cd2df
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 168af1f71f98c7211ff6ba66d13cd2dfSHA1: 0d21dcc28537be467b80dc8772ed6c0951419fd4ANALYSIS DATE: 2022-10-22T20:32:08ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – persistence – 9b9990715e97a109dcf3ca50c261117c
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 9b9990715e97a109dcf3ca50c261117cSHA1: 0015726a1a50e9925145eaf1e3b07961245b4dd1ANALYSIS DATE: 2022-10-22T21:00:19ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091, T1060, T1112...
Malware Analysis – ransomware – 12cf5b208e41d71e1e3ce6011683cf6d
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 12cf5b208e41d71e1e3ce6011683cf6dSHA1: 0bfefd02ab296c6b9ecb266e9d4d80506cef76f5ANALYSIS DATE: 2022-10-22T21:09:43ZTTPS: T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – banker – c1f57d168e3799db1e9bf566e451b93f
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: c1f57d168e3799db1e9bf566e451b93fSHA1: f7eb4ef4a360cf0a14aafb0c26ae2dc1576989faANALYSIS DATE: 2022-10-22T21:13:00ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – d9001e295434d715d2d68cff6642425d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d9001e295434d715d2d68cff6642425dSHA1: 042ddd3e3703cbaa81e22b72bcabbcdefc046670ANALYSIS DATE: 2022-10-22T21:20:43ZTTPS: T1082, T1053, T1005, T1081,...
Malware Analysis – djvu – 0483e20297a6c648111f3a79b352c71a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 0483e20297a6c648111f3a79b352c71aSHA1: 1b2a16253482595aca2c4b31b76f98846c7dfe12ANALYSIS DATE: 2022-10-22T21:12:59ZTTPS: T1060, T1112, T1082, T1053,...
Posh C2 Detected – 54[.]37[.]225[.]27:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Malware Analysis – wannacry – ed2c789b87728fb5a71105c24348ab14
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: ed2c789b87728fb5a71105c24348ab14SHA1: c0efa6b71ffd0e12e48eee3697a2b4dc88afe47aANALYSIS DATE: 2022-10-22T22:40:19ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – 106bdbb47b30a477321b204108577744
Score: 1 MALWARE FAMILY: TAGS:MD5: 106bdbb47b30a477321b204108577744SHA1: b177e0df659779ca1165b8b35cb7e09754129401ANALYSIS DATE: 2022-10-22T21:30:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – da8ae748568d252c27af7457be7a4ab5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: da8ae748568d252c27af7457be7a4ab5SHA1: 913b2268de16a4294c433f97bbb4439634f7b564ANALYSIS DATE: 2022-10-22T21:48:26ZTTPS: T1053, T1005, T1081, T1012,...
