Cobalt Stike Beacon Detected – 107[.]182[.]20[.]17:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: November 2022
Cobalt Stike Beacon Detected – 77[.]73[.]131[.]6:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]142[.]171[.]59:25565
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – e8f2e9dfe20066773c30ce6bcd6153bd
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: e8f2e9dfe20066773c30ce6bcd6153bdSHA1: ea044ea4d8d5bdfe62389e338a8e6f89ac2b8775ANALYSIS DATE: 2022-11-28T16:36:12ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – persistence – 5210f168f2d7f59b5b9c3f66e58b205c
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 5210f168f2d7f59b5b9c3f66e58b205cSHA1: 0d669740f1ec1a6e87ceb22239b70616dfce37c9ANALYSIS DATE: 2022-11-28T17:25:33ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 13d8d4a482cfcb67c2281e84b4f756a3
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 13d8d4a482cfcb67c2281e84b4f756a3SHA1: b3e07b303b598f42f8a79ba36ced4f1cf96504d6ANALYSIS DATE: 2022-11-28T16:41:45ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – f11f9d800e0130517df79e019dbae757
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: f11f9d800e0130517df79e019dbae757SHA1: b9055d16e6a24d9bf829d63b4a370b70cd1ce84aANALYSIS DATE: 2022-11-28T16:36:10ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 033d1c48ba9d6bdd28dd6c9395e25fd6
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 033d1c48ba9d6bdd28dd6c9395e25fd6SHA1: d07af7ceec86afba00750009df90a8604d5b1502ANALYSIS DATE: 2022-11-29T21:45:00ZTTPS: T1490, T1059, T1107, T1070, T1485, T1082, T1012, T1120 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – d7bc03281e761a7b3d729fb6ef803b6e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – ragnarlocker – 9bfb49abbfea8f5f8b89f2f377e973e1
Score: 10 MALWARE FAMILY: ragnarlockerTAGS:family:ragnarlocker, bootkit, evasion, persistence, ransomwareMD5: 9bfb49abbfea8f5f8b89f2f377e973e1SHA1: 9acb987a295ab88ded9b20ab8cdb97c0ecdc0734ANALYSIS DATE: 2022-11-29T21:56:53ZTTPS: T1490, T1107, T1067, T1012, T1120, T1082 ScoreMeaningExample10Known...
Malware Analysis – djvu – d9afdbf7050e0973224b267dbffa9457
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d9afdbf7050e0973224b267dbffa9457SHA1: bf7d808baea954c2eac0e30c9cae4ef3e26673d2ANALYSIS DATE: 2022-11-29T21:55:31ZTTPS: T1222, T1082, T1012, T1005,...
Malware Analysis – amadey – 93366f27a626ccf9bc5404430f18608c
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – smokeloader – d24cefe18c680c5901545ed9b1efaf81
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d24cefe18c680c5901545ed9b1efaf81SHA1: 40fd9989c083181970e872803fe3eb3fbb789ebdANALYSIS DATE: 2022-11-29T22:55:58ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 41001fdd7879ce9ede214e92c7e492be
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 41001fdd7879ce9ede214e92c7e492beSHA1: 215964b0399da37b41b7f420806a72feb72a7c28ANALYSIS DATE: 2022-11-29T23:21:03ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – djvu – bab03c2ce9374981269596f8577cc553
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bab03c2ce9374981269596f8577cc553SHA1: 30128f07491475d34ee8eead5dafbb73ef3fbb33ANALYSIS DATE: 2022-11-29T23:56:42ZTTPS: T1053, T1005, T1081, T1012,...
Threat actors are offering access to corporate networks via unauthorized Fortinet VPN access
Cyble observed Initial Access Brokers (IABs) offering access to enterprise networks compromised via a critical flaw in Fortinet products. Researchers at...
Data Exfiltration Prevention with SASE
Data exposure from SaaS and cloud applications is an increasing risk factor facing businesses today. Discover how SASE capabilities can...
Industry 4.0: CNC Machine Security Risks Part 1
This three-part blog series explores the risks associated with CNC machines If you like the site, please consider joining the...
Cyber Crime: INTERPOL Uses Trend Threat Intelligence
INTERPOL recently conducted operation African Surge to take down malicious infrastructure across the African continent and requested the help of...
US-CERT Bulletin (SB22-332):Vulnerability Summary for the Week of November 21, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Malware Analysis – evasion – 2d95aa6bad4882a0b4619233a666b404
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 2d95aa6bad4882a0b4619233a666b404SHA1: c0edb04e730964ac4a6229f9a5d2fc6c62b1848dANALYSIS DATE: 2022-11-28T09:29:58ZTTPS: T1107, T1490, T1060, T1112, T1088, T1089, T1158 ScoreMeaningExample10Known...
Malware Analysis – evasion – 1d44c07d4511e0f8487ae8ae49c635c5
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 1d44c07d4511e0f8487ae8ae49c635c5SHA1: 7912eaaccc61299660807e1a65aa70e3f6db1e70ANALYSIS DATE: 2022-11-28T10:07:35ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 97b0a298b70cbb33056e43cd3360a096
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 97b0a298b70cbb33056e43cd3360a096SHA1: a6ccdae016b8330c0ff44a694b44108f37eea595ANALYSIS DATE: 2022-11-28T09:56:34ZTTPS: T1060, T1112, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – c9f816fa3da7cda14f0818d8d7d0d626
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: c9f816fa3da7cda14f0818d8d7d0d626SHA1: 2b4e7f608c11eb610b8ce8fcd40db0937fe5c0bdANALYSIS DATE: 2022-11-28T09:57:15ZTTPS: T1082, T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware...
