Cobalt Stike Beacon Detected – 119[.]29[.]164[.]40:9000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: November 2022
Cobalt Stike Beacon Detected – 45[.]14[.]66[.]194:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 164[.]155[.]66[.]68:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – ada8b955be3a762f6329c9fc50ec3f4e
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, spyware, stealerMD5: ada8b955be3a762f6329c9fc50ec3f4eSHA1: c64642c65127863588c0dcee7f5efe4560a79b2eANALYSIS DATE: 2022-11-21T23:10:07ZTTPS: T1060, T1112, T1012, T1120, T1082, T1005,...
Malware Analysis – ransomware – 575209a960a7cab884fb7cd2b286526f
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 575209a960a7cab884fb7cd2b286526fSHA1: fbfeab580dc81bad84a64daf8898f0b7383b71dcANALYSIS DATE: 2022-11-21T22:49:13ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – b8f0d46ba03f682bf2c75d2bc6b71bff
Score: 1 MALWARE FAMILY: TAGS:MD5: b8f0d46ba03f682bf2c75d2bc6b71bffSHA1: 878f13ef8a26e7b47b0204f6a34b33ee6db4a093ANALYSIS DATE: 2022-11-21T23:21:02ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 4fc8007cbf247e32a9aad217e54f3776
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 4fc8007cbf247e32a9aad217e54f3776SHA1: c4b7bdd7ad6134ba72eac2612b3578b409276a40ANALYSIS DATE: 2022-11-21T22:40:41ZTTPS:...
Malware Analysis – xorist – cfbc736d5a16198f13e7bf360e5004be
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: cfbc736d5a16198f13e7bf360e5004beSHA1: 4aea5ace463590c5c2bd1cc571851e5e630d9331ANALYSIS DATE: 2022-11-21T23:26:29ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA...
Malware Analysis – persistence – 1cb62a3e0b7046d02ed4ac43f3c717cc
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 1cb62a3e0b7046d02ed4ac43f3c717ccSHA1: 8c3c65cab75b8efbb1b0d3d8dec51e70db427249ANALYSIS DATE: 2022-11-21T23:24:09ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 48f447d20322caf8063207f9720aa18f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 48f447d20322caf8063207f9720aa18fSHA1: d6e54ee257c2899329d8eaade875c2e7341de502ANALYSIS DATE: 2022-11-21T23:32:43ZTTPS: T1060, T1112, T1082, T1053,...
Malware Analysis – persistence – ba92a58928b82ba662e7abb4ff4014a9
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: ba92a58928b82ba662e7abb4ff4014a9SHA1: 625b969f84a378bf9eac44de81461d9bd36dd34cANALYSIS DATE: 2022-11-21T23:27:06ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Expert published PoC exploit code for macOS sandbox escape flaw
A researcher published details and proof-of-concept (PoC) code for High-Severity macOS Sandbox escape vulnerability tracked as CVE-2022-26696. Researcher Wojciech Reguła...
Malware Analysis – djvu – 21ed1a8856f1cba3aab93022911ab8a4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 21ed1a8856f1cba3aab93022911ab8a4SHA1: 6711fbe4bb970396d0b77613c4a6bb0a7b352934ANALYSIS DATE: 2022-11-21T15:41:32ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – discovery – 3109c9c3cb533401bdce4ac0cc4f2010
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 3109c9c3cb533401bdce4ac0cc4f2010SHA1: fcf7e2235ad44e7ba1a84ace75fce1e773893478ANALYSIS DATE: 2022-11-21T15:46:06ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 19c4203255da565b4df0989bb5edb670
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 19c4203255da565b4df0989bb5edb670SHA1: 98eaf8e50feda91a8df54df6a5061ecc9122768aANALYSIS DATE: 2022-11-21T15:55:11ZTTPS: T1490, T1060, T1112, T1082 ScoreMeaningExample10Known badA malware family was...
HackerOne Bug Bounty Disclosure: open-redirect-that-can-lead-to-malicious-websitesbymrdot404
Programme HackerOne AMBER AI AMBER AI Submitted by mrdot404 mrdot404 Report Open redirect that can lead to malicious websites Full...
HackerOne Bug Bounty Disclosure: dependecy-confusion-via-lookup-request-forwarding-to-pypi-orgbyusd-responsible-disclosure
Programme HackerOne GitLab GitLab Submitted by usd-responsible-disclosure usd-responsible-disclosure Report Dependecy Confusion via Lookup Request Forwarding to PyPi.org Full Report A...
Malware Analysis – agilenet – 6c90fa5b5c9de97a444b366ec0d14255
Score: 9 MALWARE FAMILY: agilenetTAGS:agilenet, evasion, persistence, ransomware, themida, trojanMD5: 6c90fa5b5c9de97a444b366ec0d14255SHA1: 90cd4499a264ac9e589a0a0c98e0258067aa22a7ANALYSIS DATE: 2022-11-21T16:55:07ZTTPS: T1012, T1082, T1497, T1060, T1112, T1491...
Malware Analysis – djvu – 2a4ba51b2761b26883558fb2f316ae2e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 2a4ba51b2761b26883558fb2f316ae2eSHA1: a3af31464eafb47e4f2064b6c671224fbbfffb19ANALYSIS DATE: 2022-11-21T16:12:50ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – dcrat – 2f566eb78a2defcf471bd9fe0c4d2f51
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 2f566eb78a2defcf471bd9fe0c4d2f51SHA1: e2f285602510faf52f48afe3635f347cd71db4c0ANALYSIS DATE:...
Malware Analysis – djvu – 8debd1fea7f6963dece511ccd8c18a7f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 8debd1fea7f6963dece511ccd8c18a7fSHA1: 5b461962f5dd1e12c3bb913c489b7adb364fc595ANALYSIS DATE: 2022-11-21T16:31:10ZTTPS:...
Malware Analysis – djvu – 6739446b547d4fcb92d882afbb29b27b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6739446b547d4fcb92d882afbb29b27bSHA1: d773a4c4a29bf927124cfa6a43f35af87c619ab7ANALYSIS DATE: 2022-11-21T17:00:37ZTTPS: T1053, T1222, T1005, T1081,...
Malware Analysis – xorist – 040d31fee8dc69b4c0585494696d4a50
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 040d31fee8dc69b4c0585494696d4a50SHA1: 9434a9b4f3e17a66de0ca3f7c1fd4d5e88ddc188ANALYSIS DATE: 2022-11-21T17:22:20ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – dcrat – 744e647a0b6a070d50b41927dda80dfc
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 744e647a0b6a070d50b41927dda80dfcSHA1:...
