Juniper Networks Junos OS command execution | CVE-2022-22241
NAME Juniper Networks Junos OS command execution Platforms Affected:Juniper Networks Junos OS 19.2 Juniper Networks Junos OS 19.3 Juniper Networks...
Month: October 2022
Siemens SIMATIC S7-1200, S7-1500 CPUs and related products information disclosure | CVE-2022-38465
NAME Siemens SIMATIC S7-1200, S7-1500 CPUs and related products information disclosure Platforms Affected:Siemens SIMATIC ET 200SP Open Controller CPU 1515SP...
Palo Alto Networks PAN-OS security bypass | CVE-2022-0030
NAME Palo Alto Networks PAN-OS security bypass Platforms Affected:Palo Alto Networks PAN-OS 8.1Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Palo Alto Networks PAN-OS...
Foresight GC3 Launch Monitor security bypass | CVE-2022-40187
NAME Foresight GC3 Launch Monitor security bypass Platforms Affected:Foresight GC3 Launch Monitor 1.3.15.68Risk Level:9.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Foresight GC3 Launch Monitor...
Linux Kernel code execution | CVE-2022-42719
NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.2 Linux Kernel 5.19.14Risk Level:8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Linux Kernel could allow...
Sony Content Transfer code execution | CVE-2022-41796
NAME Sony Content Transfer code execution Platforms Affected:Sony Content Transfer for Windows 1.3Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Sony Content Transfer could...
Daily Vulnerability Trends: Fri Oct 14 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41033Windows COM+ Event System Service Elevation of Privilege Vulnerability.CVE-2022-36067vm2 is a sandbox...
Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)
Overview On September 10, 2022, a user reported on Zimbra’s official forums that their team detected a security incident originating...
Malware Analysis – discovery – 6905e9e6ec69c8f324f51d755f8a85f0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 6905e9e6ec69c8f324f51d755f8a85f0SHA1: 18b8badd020675e0251c7431899c58de4fb76533ANALYSIS DATE: 2022-10-13T22:30:48ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 493d67f1e5dad681c15249f4c8737980
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 493d67f1e5dad681c15249f4c8737980SHA1: c49a0dcd26cc9c3cfe43e5398dc7e9f928ba1f97ANALYSIS DATE: 2022-10-13T23:23:45ZTTPS: T1082, T1012, T1120, T1491, T1112, T1004, T1060, T1091,...
Malware Analysis – smokeloader – 3926dc32500a1214432357400c2743e1
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3926dc32500a1214432357400c2743e1SHA1: 5ab53cea630a962e320d641d0f3e31beab8513eeANALYSIS DATE: 2022-10-14T02:56:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 6507fceb882ebd25468607abfca30b3c
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6507fceb882ebd25468607abfca30b3cSHA1: 56d558db5207c1d683ad4804abda4e285eabb76eANALYSIS DATE: 2022-10-13T23:23:50ZTTPS: T1088, T1089, T1112, T1060, T1158, T1082, T1012, T1120,...
Malware Analysis – smokeloader – 5a1dc674681bf0652500813bedd52416
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5a1dc674681bf0652500813bedd52416SHA1: 02209e45efac844b5cf7a8dbfe098172a81630a9ANALYSIS DATE: 2022-10-14T02:02:45ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 40afe7409ce7634d460ba5e85c477efc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 40afe7409ce7634d460ba5e85c477efcSHA1: 609cc6265c63ea0b9ceaa8e8e0a9bfe81032c3d4ANALYSIS DATE:...
Malware Analysis – ransomware – a11e40135fd9ff472e8ade1b52d6e9a5
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: a11e40135fd9ff472e8ade1b52d6e9a5SHA1: fda874e1fd920a5ef9c3703899868902ccbacc15ANALYSIS DATE: 2022-10-14T03:02:03ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 2534c737caef3e493adb9d938ef169d8
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2534c737caef3e493adb9d938ef169d8SHA1: 027f16794348fdabb32f4b9920e71920964e79a5ANALYSIS DATE: 2022-10-14T03:03:03ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – d4eeebdda5eb7be85f2d03b81f579342
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: d4eeebdda5eb7be85f2d03b81f579342SHA1: f64302686c60e1f67a33456af80e1a4b9f21b8ecANALYSIS DATE: 2022-10-14T03:02:04ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – danabot – a8175a6f56749f36c353e0e25e2dc7cd
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...
Malware Analysis – ransomware – 776eb80d497eead5b2ed81835694bfb9
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 776eb80d497eead5b2ed81835694bfb9SHA1: 0124f5f2cadb6e75c6f18137a7ff7affa75fccbfANALYSIS DATE: 2022-10-14T03:04:03ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – edcc881113cb158df3922975670d3454
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: edcc881113cb158df3922975670d3454SHA1: 91a406d9bf0a64aad0e5768c7f3a94bde6b92475ANALYSIS DATE: 2022-10-14T03:27:03ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – ransomware – d742a599500e84ac441fe11090587c80
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: d742a599500e84ac441fe11090587c80SHA1: b7ba96774846c3336fe92ca8d5cb16a7bc000ad9ANALYSIS DATE: 2022-10-14T03:50:19ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 2f0b9d722bcd0fa9b322957dd3a7ed1d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2f0b9d722bcd0fa9b322957dd3a7ed1dSHA1: 003f3d0f45f53f128c129a2024d3aee409242271ANALYSIS DATE: 2022-10-14T03:03:06ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 70f17f8169e057b0b26508df49cac1dd
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 70f17f8169e057b0b26508df49cac1ddSHA1: dbfa78bc1b3a83e5533380326d38d23d90eadb1dANALYSIS DATE: 2022-10-14T03:51:30ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – dharma – 8f1ebbcbdf8bc826852d06270494fbc5
Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 8f1ebbcbdf8bc826852d06270494fbc5SHA1: d1eae57063d8a5cb242699a326a5d8e80adaa53eANALYSIS DATE: 2022-10-14T03:53:44ZTTPS: T1060, T1112, T1107, T1490, T1005, T1081, T1082,...
