Cobalt Stike Beacon Detected – 121[.]4[.]236[.]17:10001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2022
Cobalt Stike Beacon Detected – 39[.]106[.]45[.]206:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – persistence – 7b449fc14ac4ed33d828d70367dd9361
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealer, upxMD5: 7b449fc14ac4ed33d828d70367dd9361SHA1: 44064f97b839e6c421c1b52c9cf2e8395dd2f890ANALYSIS DATE: 2022-10-20T08:28:28ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – e9364fd6cff3a0fee9d8636f526a506e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: e9364fd6cff3a0fee9d8636f526a506eSHA1: e51f1e530d958bf41386b39416413977c4143c6aANALYSIS DATE: 2022-10-21T20:13:21ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – evasion – 80164d0ec36a23a99f475bcd6b7d22e0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 80164d0ec36a23a99f475bcd6b7d22e0SHA1: d49a64aa7b25b3789d06174b8bb82c284d1ddd8bANALYSIS DATE: 2022-10-20T08:29:42ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – danabot – d6d9a414b730c354bcc0898be39bb1ef
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: d6d9a414b730c354bcc0898be39bb1efSHA1: cb9a900daee7a92e682ffec32555cf9e5da63bb6ANALYSIS...
Malware Analysis – danabot – 8ae5a35a6e434514f421e720aecab786
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 8ae5a35a6e434514f421e720aecab786SHA1: 518ae303c6e50d29ab84765b49e94d9f34862599ANALYSIS...
Malware Analysis – djvu – 9a5f578e12a5b13f8f43d5354d1a6b3a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9a5f578e12a5b13f8f43d5354d1a6b3aSHA1: 13a54466ea20dd8a3ff8694f19ce54fba416f8b4ANALYSIS DATE: 2022-10-21T21:00:32ZTTPS: T1222, T1082, T1053, T1005,...
Malware Analysis – persistence – b2215e07bc71e215abc9ed15d8d1092f
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: b2215e07bc71e215abc9ed15d8d1092fSHA1: 43d13e28914e43885b02231d4d774aac13dfd0a2ANALYSIS DATE: 2022-10-21T21:00:19ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091, T1060, T1112...
Malware Analysis – djvu – c9541b8ec22c7704a36b64912164e311
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: c9541b8ec22c7704a36b64912164e311SHA1: 835ce36aaba5acf0baf0af84439b1efcf8ac416eANALYSIS DATE: 2022-10-21T21:00:02ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – persistence – 1784b275a3aa4f0e37ca55fa4eee6a50
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 1784b275a3aa4f0e37ca55fa4eee6a50SHA1: 5b2497dff78037fe8cef29498e9f8579c1f94a73ANALYSIS DATE: 2022-10-21T22:20:24ZTTPS: T1082, T1107, T1490, T1091, T1060, T1112, T1005, T1081...
Malware Analysis – evasion – f9a6cefa9b80c8c82426b4f43c8386a7
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomware, themida, trojan, upxMD5: f9a6cefa9b80c8c82426b4f43c8386a7SHA1: 28fa185b03547f8441a43f1a4e91b961f5ad6bb8ANALYSIS DATE: 2022-10-21T21:55:17ZTTPS: T1012, T1120, T1082, T1497 ScoreMeaningExample10Known badA malware...
Malware Analysis – danabot – f43ac18b5edd49c9c4fe6620e17220ac
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: f43ac18b5edd49c9c4fe6620e17220acSHA1: ad94aa6c2447546e65063c9d453304ca1b5547b7ANALYSIS...
Malware Analysis – discovery – f01771b29abf7e8498a428c2d53bffac
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: f01771b29abf7e8498a428c2d53bffacSHA1: 5dcc92ce9101bce9d807b09d682e2e80b0087271ANALYSIS DATE: 2022-10-21T22:34:38ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Infographic: How CNAPP Consolidate Cybersecurity Tools
A cloud-native application protection platform (CNAPP) consolidates your security tools, helping development, DevOps, cloud, and security teams sort each piece...
Experts warn of CVE-2022-42889 Text4Shell exploit attempts
Wordfence researchers warn of exploitation attempts targeting the recently disclosed flaw in Apache Commons Text dubbed Text4Shell. Experts at WordPress security firm...
CISA: #StopRansomware: Daixin Team
#StopRansomware: Daixin Team CISA, the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) have...
Malware Analysis – evasion – 437b022ea640e3f2ef6dffa5f0b58606
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 437b022ea640e3f2ef6dffa5f0b58606SHA1: b68a8a1658c2ae6cff738178ced31db7e2cafe63ANALYSIS DATE: 2022-10-21T06:54:00ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 736c1b70cd49fc72e575a0fb4dacaed0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 736c1b70cd49fc72e575a0fb4dacaed0SHA1: f1462e828edd6607c229c6f98c61f85684117f63ANALYSIS DATE: 2022-10-21T07:09:18ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – d9a45cad09b06bb232c0050fb4263e4f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d9a45cad09b06bb232c0050fb4263e4fSHA1: c90823242a31c83a49f2c161f7920cae1e115218ANALYSIS DATE: 2022-10-21T14:14:42ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – djvu – 6958fc7326e0893ae5fc204d74217c9d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6958fc7326e0893ae5fc204d74217c9dSHA1: 2f14c70a7b4be2b978389aa6868d74d9fd20ae30ANALYSIS DATE: 2022-10-21T14:40:23ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – djvu – 8d18e31cf34a906ab2cea42d14aad351
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 8d18e31cf34a906ab2cea42d14aad351SHA1: 65607a572919893e596dcf37fd25560ec1d1d058ANALYSIS DATE: 2022-10-21T14:38:13ZTTPS: T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – db2b87503b2f76ef39660af0903186f6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: db2b87503b2f76ef39660af0903186f6SHA1: 7a793b7930b4988d42e0b5e5d75d734ce3738e3eANALYSIS DATE: 2022-10-21T14:20:44ZTTPS: T1012, T1060, T1112, T1082,...
Malware Analysis – ransomware – 870172f3804834a399be0c291cecc756
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 870172f3804834a399be0c291cecc756SHA1: 1272fddefcda82716aa71c89d7d925a8c0e4f31fANALYSIS DATE: 2022-10-21T14:40:17ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...