Cobalt Stike Beacon Detected – 77[.]73[.]133[.]110:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: November 2022
Malware Analysis – discovery – 056f96dd83869178cc89db4fc54d6d90
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 056f96dd83869178cc89db4fc54d6d90SHA1: b1634bbabcc7da99162eaa98a074b3d2d9795ccaANALYSIS DATE: 2022-11-07T09:51:00ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Cobalt Stike Beacon Detected – 77[.]73[.]133[.]93:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]142:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]79[.]90:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Black Basta Ransomware Victim: METRO
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – adware – 0eb27d82d64fd4bb872dcfac524e9a40
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealerMD5: 0eb27d82d64fd4bb872dcfac524e9a40SHA1: 5994c7b5d7720ea1c832823a3513add7b496ca96ANALYSIS DATE: 2022-11-07T10:18:56ZTTPS: T1222, T1012, T1120, T1082, T1112, T1176, T1060...
Malware Analysis – evasion – d7b5002c49e6158aadb8da692ee90caf
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: d7b5002c49e6158aadb8da692ee90cafSHA1: 519d9b9217507b9142d2df937a01086bcaf8b24dANALYSIS DATE: 2022-11-07T10:17:21ZTTPS: T1158, T1112, T1088, T1089, T1005, T1081,...
Malware Analysis – ransomware – cd7edce6aa9c3799e5b913481a86177d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: cd7edce6aa9c3799e5b913481a86177dSHA1: 06dd14745ab11c9ea657a4a21826cb080d07eaf5ANALYSIS DATE: 2022-11-07T23:40:25ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – def09643dae2dbb070586b91735b5845
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: def09643dae2dbb070586b91735b5845SHA1: a1ee1c25401eb18f23510e69e64497fb8e78d640ANALYSIS DATE: 2022-11-07T21:13:04ZTTPS: T1012, T1082, T1005, T1081,...
Are Containers Affected by OpenSSL Vulnerabilities?
Find out if your container-based applications are vulnerable to the new OpenSSL vulnerabilities and the recommendations to help ensure you...
US-CERT Bulletin (SB22-311):Vulnerability Summary for the Week of October 31, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
āJustice Bladeā Hackers are Targeting Saudi Arabia
Threats actors calling themselves āJustice Bladeā published leaked data from an outsourcing IT vendor. The group of threat actors calling...
LockBit 3.0 Ransomware Victim: richard-wolf[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – evasion – 082ae3b6f159a68c4ff1c89594b7f221
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 082ae3b6f159a68c4ff1c89594b7f221SHA1: 541e2a85bb17c8e059b0ca513e941914c3baf8afANALYSIS DATE: 2022-11-07T04:20:10ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – xorist – 06ef31e62e5b10e2bacae0493e98e836
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 06ef31e62e5b10e2bacae0493e98e836SHA1: 0d8bb8222f1a324e048fb293011db5621ea8299cANALYSIS DATE: 2022-11-07T04:32:36ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – – 0cd7d4b890893d0b1b43f9372c9679d0
Score: 7 MALWARE FAMILY: TAGS:MD5: 0cd7d4b890893d0b1b43f9372c9679d0SHA1: 98ef16fc4599f6866797041f8b72fdd700321942ANALYSIS DATE: 2022-11-07T04:30:45ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – xorist – 0fe9aea31913d392769cc6bf40d2af61
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 0fe9aea31913d392769cc6bf40d2af61SHA1: 6caf7328e9abb5ce35dc7a4b3eb39726165f9877ANALYSIS DATE: 2022-11-07T04:32:40ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 0e23d1a8ca65a4067e50718305cd8956
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 0e23d1a8ca65a4067e50718305cd8956SHA1: 3d85d49bc151777e6553953dadd798fea00a8d15ANALYSIS DATE: 2022-11-07T04:32:38ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 0db31955e3dc63769545a494d23cb356
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 0db31955e3dc63769545a494d23cb356SHA1: 53799e1ba3cd3b2d24f225e7785864b54f7581aaANALYSIS DATE: 2022-11-07T04:32:41ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 04fee8ac111c10660178f4ddbc1f17c9
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 04fee8ac111c10660178f4ddbc1f17c9SHA1: 57eb1390e539144d87bb4bb3c1c2c5103b50a819ANALYSIS DATE: 2022-11-07T04:32:43ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Robin Banks phishing-as-a-service platform continues to evolve
The phishing-as-a-service (PhaaS) platform Robin BanksĀ migrated its infrastructure to DDoS-Guard, a Russian bulletproof hosting service. The phishing-as-a-service (PhaaS) platform Robin...
Malware Analysis – persistence – 0fc72ebcf25169644c11125b4d7353f0
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 0fc72ebcf25169644c11125b4d7353f0SHA1: b865c3cd110a262ce37dc6fbfc1d578c7ddabd32ANALYSIS DATE: 2022-11-07T04:35:45ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – adware – 0d1afcba9798b04f1f8cb790f01a3300
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: 0d1afcba9798b04f1f8cb790f01a3300SHA1: fa57ea84af2a380c493d30830118c80e8f2bbc09ANALYSIS DATE: 2022-11-07T05:29:19ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...
