Cobalt Stike Beacon Detected – 81[.]68[.]158[.]178:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: November 2022
Cobalt Stike Beacon Detected – 83[.]97[.]20[.]203:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 24[.]137[.]215[.]164:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]247[.]224[.]65:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 95[.]168[.]191[.]147:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]223[.]50[.]9:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]83:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]48[.]47[.]208:8887
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 27e35280d11289868999c49386ffc464
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 27e35280d11289868999c49386ffc464SHA1: b849a693fca46527e864ff72c7d1feb5da924b5aANALYSIS DATE: 2022-11-03T22:02:46ZTTPS: T1222, T1082, T1012, T1005, T1081, T1060,...
Malware Analysis – djvu – fede749488d54142d94708f511161471
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: fede749488d54142d94708f511161471SHA1: 03a60a830d6c0164674ce25e33d32d9ece0b4a80ANALYSIS...
Malware Analysis – djvu – 541c0d595c06b744bc017f57a3f4a62c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 541c0d595c06b744bc017f57a3f4a62cSHA1: c3e3cf1d2b0fdb30801cac652c10b0b114b2ed96ANALYSIS DATE:...
Malware Analysis – djvu – 699492f15db1ff4e2986033063127fc5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 699492f15db1ff4e2986033063127fc5SHA1: 13813b993be8b1840d40a71fc35e430a17c18b2cANALYSIS DATE: 2022-11-03T21:20:05ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – smokeloader – 09dc0f75d1c3abf6ee1e64e53ba8360b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 09dc0f75d1c3abf6ee1e64e53ba8360bSHA1: 172a1d68594d260d938354502195a4a78eabc15fANALYSIS DATE: 2022-11-03T22:36:12ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – b4775fcffd1877ffa155fffc0832cbd8
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, persistenceMD5: b4775fcffd1877ffa155fffc0832cbd8SHA1: c1e419c89fbd9aadcd1d436ec2c98f3be1db8dadANALYSIS DATE: 2022-11-03T23:19:51ZTTPS: T1112, T1082, T1158, T1222, T1060, T1031, T1562, T1489...
Malware Analysis – djvu – 7f32cdd1db495a336145bca2758b2e06
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 7f32cdd1db495a336145bca2758b2e06SHA1: f2bf30b2935aebe75f68d2e57ccae512421acee3ANALYSIS DATE: 2022-11-03T22:20:41ZTTPS: T1060, T1112, T1082, T1005, T1081, T1222,...
Malware Analysis – djvu – c15d429af10a5dadaabad820b29cb1d2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: c15d429af10a5dadaabad820b29cb1d2SHA1: 9fc1b439ec70adafb20b5b9326e26425cd2bf6d2ANALYSIS DATE:...
Malware Analysis – smokeloader – a343054d338bfc46a1fbaec990578c7f
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a343054d338bfc46a1fbaec990578c7fSHA1: ef6ba7571f838ddb7b7dfde50ca7446d074c9f3cANALYSIS DATE: 2022-11-03T23:33:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 1e2e0020b6140ff19ce04105a6edb01f
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 1e2e0020b6140ff19ce04105a6edb01fSHA1: e26d2af5951df72e2670fd1bf2e0d91e0c82f32dANALYSIS DATE: 2022-11-03T23:52:10ZTTPS: T1112, T1005, T1081, T1491 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – a08506aabc000bb98e9051d5286d1420
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: a08506aabc000bb98e9051d5286d1420SHA1: fe5de35f1805b9960d36f0e957452c50aa76a629ANALYSIS DATE: 2022-11-03T23:51:55ZTTPS: T1005, T1081, T1491, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – troldesh – cc2bd1e896fe8dc1a0116527d6f00b43
Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, discovery, persistence, ransomware, spyware, stealer, trojan, upxMD5: cc2bd1e896fe8dc1a0116527d6f00b43SHA1: 3be26ba3ef9b854062acfdc603d068755863282fANALYSIS DATE: 2022-11-03T23:49:57ZTTPS: T1082, T1005, T1081, T1107,...
Posh C2 Detected – 109[.]248[.]6[.]221:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
LockBit ransomware gang claims the hack of Continental automotive group
The LockBit ransomware group claimed to have hacked the multinational automotive group Continental and threatens to leak stolen data. LockBit...
HackerOne Bug Bounty Disclosure: archived-/-deleted-/-private-poll-can-be-viewed-by-another-users-[crowdsignal-wordpress-plugins]byapapedulimu
Programme HackerOne Automattic Automattic Submitted by apapedulimu apapedulimu Report Archived / Deleted / Private Poll Can Be Viewed by Another...
HackerOne Bug Bounty Disclosure: command-injection-in-github-actions-containerstephostbyjupenur
Programme HackerOne GitHub GitHub Submitted by jupenur jupenur Report Command injection in GitHub Actions ContainerStepHost Full Report A considerable amount...
