Cobalt Stike Beacon Detected – 47[.]100[.]247[.]192:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: November 2022
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 124[.]220[.]10[.]78:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 205[.]185[.]114[.]97:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]48[.]29[.]38:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 31[.]41[.]244[.]142:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 64[.]44[.]102[.]133:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]217[.]185:9966
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]193[.]155[.]61:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]199[.]169[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – xmrig – 679a446a9df957ab96bd8eaa059f1edc
Score: 10 MALWARE FAMILY: xmrigTAGS:family:xmrig, discovery, evasion, miner, persistence, ransomware, spyware, stealerMD5: 679a446a9df957ab96bd8eaa059f1edcSHA1: a4bc35f5029077f304e3a1cd72ff75d219e4a022ANALYSIS DATE: 2022-11-11T21:38:31ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – hive – daa6c53378147fb212703048ad31702a
Score: 10 MALWARE FAMILY: hiveTAGS:family:hive, evasion, persistence, ransomware, spyware, stealerMD5: daa6c53378147fb212703048ad31702aSHA1: 22651c3a351fa7d21021b4713e0d30dfd9ce48e4ANALYSIS DATE: 2022-11-11T22:00:07ZTTPS: T1059, T1107, T1490, T1060, T1112, T1082,...
Malware Analysis – djvu – bc61264ac2c5e2665df415cb70a1326a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bc61264ac2c5e2665df415cb70a1326aSHA1: a909736d0ef0df42cd31546bdb08b82d9470898bANALYSIS DATE: 2022-11-11T23:07:20ZTTPS: T1082, T1012, T1060, T1112,...
CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS
This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used...
Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware
Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two...
Karakurt Ransomware Victim: Roxboro
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Ransomware Victim: Özel GözAkademi Hastanesi
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Ransomware Victim: Energy Transfer Durafin Tubes
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: National Stores Inc[.]
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Tanzania Telecommunications Company
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: William A[.] Kibbe & Associates
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Methodist McKinney Hospital
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Infinitum
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Hiersun Jewelry Co Ltd
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
