Karakurt Ransomware Victim: Stratus
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Month: November 2022
Karakurt Ransomware Victim: Gage Brothers
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Karakurt Ransomware Victim: San Benito Consolidated Independent School District
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
UK urges to disconnect Chinese security cameras in government buildings
The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that...
Malware Analysis – adware – ddc768346d02d4480cd5b2abb87c2ed1
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, stealer, upxMD5: ddc768346d02d4480cd5b2abb87c2ed1SHA1: 86401ed9da9be11850e2cc2f521252a34c124fa1ANALYSIS DATE: 2022-11-24T22:20:12ZTTPS: T1112, T1176, T1060, T1222 ScoreMeaningExample10Known badA...
Malware Analysis – persistence – acb05e95d713b1772fb96a5e607d539f
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: acb05e95d713b1772fb96a5e607d539fSHA1: 0017b03a38d00cf43fa36e40dd9f65da499c09f7ANALYSIS DATE: 2022-11-25T01:03:09ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – gozi – 4165eb68c959487dad6ef02646aa29c3
Score: 10 MALWARE FAMILY: goziTAGS:family:gozi, botnet:2782923, banker, isfb, persistence, ransomware, trojanMD5: 4165eb68c959487dad6ef02646aa29c3SHA1: fb3afa14170009086adb3a8e48ccdc189908a324ANALYSIS DATE: 2022-11-24T22:28:35ZTTPS: T1060, T1112, T1491, T1158, T1082...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Malware Analysis – djvu – a221e8cd10096d0b1fcfd9b5fc14fc21
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a221e8cd10096d0b1fcfd9b5fc14fc21SHA1: 12492f9257ebe410a009aa2ad5c365cd601a01acANALYSIS DATE: 2022-11-25T05:42:05ZTTPS: T1060, T1112, T1082, T1053,...
Malware Analysis – discovery – 74161da72b92f3dc29efa72b75dcf86c
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, persistence, spyware, stealer, upxMD5: 74161da72b92f3dc29efa72b75dcf86cSHA1: 8490c1331b1c40ce986306d5dda51670f93fd78cANALYSIS DATE: 2022-11-25T03:28:59ZTTPS: T1031, T1562, T1489, T1082, T1112,...
Malware Analysis – djvu – 9655c0e3c128e217029d30ac3b302d72
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 9655c0e3c128e217029d30ac3b302d72SHA1: 599cd1a303dd4b81c2f8b11066eb6b88e9d96490ANALYSIS DATE: 2022-11-25T05:29:46ZTTPS: T1060, T1112, T1222, T1082, T1012, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – bdcb6fd328b0c7e776bf5ed4dd3c0b6e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:1859, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: bdcb6fd328b0c7e776bf5ed4dd3c0b6eSHA1: 89268d5cde88f06a9868fbbe19dd0521a748e9f9ANALYSIS...
Cobalt Stike Beacon Detected – 45[.]130[.]146[.]13:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]184[.]132[.]151:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]195[.]169[.]91:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]134[.]27:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 109[.]248[.]18[.]177:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]44[.]132[.]52:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 51[.]140[.]141[.]107:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 93[.]115[.]29[.]65:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]82[.]84[.]195:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]40[.]127[.]134:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 143[.]198[.]42[.]1:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
