Cobalt Stike Beacon Detected – 43[.]138[.]150[.]21:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2022
Cobalt Stike Beacon Detected – 18[.]184[.]235[.]54:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – wannacry – 4c3778774e953461f657c3f30dcae65c
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 4c3778774e953461f657c3f30dcae65cSHA1: 95949074bd6ea96adadfb933ec87d090ef56a8a7ANALYSIS DATE: 2022-10-22T09:20:23ZTTPS: T1158, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – c711a4092dc474788a809a2a04817d47
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c711a4092dc474788a809a2a04817d47SHA1: 4cf6b33deb31e59774abfe668ea3bba006893eb5ANALYSIS DATE: 2022-10-22T09:21:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – f1ed7c8df3b8844051673481c7a96fc9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f1ed7c8df3b8844051673481c7a96fc9SHA1: f6ec99d577cadc4f990388874b2f942f5b501a8fANALYSIS DATE: 2022-10-22T09:06:13ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – – 351f7496c3d09f5cf5577125d0ba03ac
Score: 1 MALWARE FAMILY: TAGS:MD5: 351f7496c3d09f5cf5577125d0ba03acSHA1: c2dadfb62972ab16abbfd29870758c372194d6a3ANALYSIS DATE: 2022-10-22T09:09:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 38[.]126[.]169[.]107:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 31[.]41[.]244[.]192:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]132[.]124[.]75:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]69:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 7b2e99759b23da1ac4e2672684b75c57
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7b2e99759b23da1ac4e2672684b75c57SHA1: 2e80003d77c6a07c6dfc3e8c85586d226e2cb541ANALYSIS DATE: 2022-10-22T09:56:55ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – locky – f40dfb641736b161558f45a28eb7d12c
Score: 10 MALWARE FAMILY: lockyTAGS:family:locky, ransomwareMD5: f40dfb641736b161558f45a28eb7d12cSHA1: 5f7041f9e5abfc97c80bb1175c433fec01c2eb3bANALYSIS DATE: 2022-10-22T09:36:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – a092ec0ba9f83f59c0ded72d24758077
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a092ec0ba9f83f59c0ded72d24758077SHA1: e782e144bef62bb3d6455736e5d4309725a151adANALYSIS DATE: 2022-10-22T09:30:27ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – – 74d5c545888561be891363d16ceae294
Score: 1 MALWARE FAMILY: TAGS:MD5: 74d5c545888561be891363d16ceae294SHA1: 127f4c1da282b56c1d5e3f05944315147f024992ANALYSIS DATE: 2022-10-22T09:47:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – bbae117f83c3c0b06a46e464e227883f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bbae117f83c3c0b06a46e464e227883fSHA1: e95800719dec01064ba60988a2f48a9870efb51eANALYSIS DATE: 2022-10-22T10:00:41ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – – b8e46d51ee306d411cf604da7907cf87
Score: 1 MALWARE FAMILY: TAGS:MD5: b8e46d51ee306d411cf604da7907cf87SHA1: 8f823a95b660343194d8651e02445d32f172edc8ANALYSIS DATE: 2022-10-22T10:27:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 2495dfd06c1c1e8f64aaf9ba9805627c
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 2495dfd06c1c1e8f64aaf9ba9805627cSHA1: 095bbec046b9760795370b02c482c6ae9f72a68bANALYSIS DATE: 2022-10-22T10:22:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 08fa2b24641973b9947bcafdc37771e7
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 08fa2b24641973b9947bcafdc37771e7SHA1: 565df963618bff66540c2071dfffaf58efaae52dANALYSIS DATE: 2022-10-22T10:18:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 153785fdb6461c9c71e75ed2e9108a28
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:nam7, botnet:slovarikinstalls, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – ransomware – 95e2e70ed1b76f1ebbfd751a01938982
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 95e2e70ed1b76f1ebbfd751a01938982SHA1: 166f733180f4a681453d33a3506100656fd166f1ANALYSIS DATE: 2022-10-22T10:33:46ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – a2801a0ac7d6204ec19ec708228e5a0b
Score: 1 MALWARE FAMILY: TAGS:MD5: a2801a0ac7d6204ec19ec708228e5a0bSHA1: 692a926583bcf3aed9fa28678435b6d7921e49abANALYSIS DATE: 2022-10-22T10:41:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – 96bf108af2eafc33969cfb9f8ace6a25
Score: 1 MALWARE FAMILY: TAGS:MD5: 96bf108af2eafc33969cfb9f8ace6a25SHA1: f170c820fac79c4851061980b1eaa3318c3d2377ANALYSIS DATE: 2022-10-22T10:29:39ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Oracle VM VirtualBox unspecified | CVE-2022-39426
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
F5 BIG-IP (Advanced WAF, ASM) code execution | CVE-2022-41617
NAME F5 BIG-IP (Advanced WAF, ASM) code execution Platforms Affected:F5 BIG-IP (ASM) 14.1.0 F5 BIG-IP (ASM) 13.1.0 F5 BIG-IP (ASM)...
