Cobalt Stike Beacon Detected – 139[.]224[.]202[.]28:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Malware Analysis – ransomware – 69b02f689b95041212c9ebda97a12c3d
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 69b02f689b95041212c9ebda97a12c3dSHA1: 5c10789d160650dbe5304c9b64d7567d7f191d18ANALYSIS DATE: 2022-11-23T19:01:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 47d86bed6f9d6fe9263920d5fde8dd20
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 47d86bed6f9d6fe9263920d5fde8dd20SHA1: adc84eaa0b6eaa06c33082af0cf645324a750b28ANALYSIS DATE: 2022-11-23T19:01:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 164903ecc03a2744f45b4bb7f0b65770
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 164903ecc03a2744f45b4bb7f0b65770SHA1: b52659af39bd470a6889b1065857872e04cfbd15ANALYSIS DATE: 2022-11-23T19:01:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 0d93e4a1b0881cc9f07db871f1564758
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 0d93e4a1b0881cc9f07db871f1564758SHA1: 2c0ac57e8a37a5eb8820adec7a8f11a07488bd75ANALYSIS DATE: 2022-11-23T19:05:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 118[.]195[.]163[.]162:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]156[.]187[.]92:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 141[.]98[.]82[.]243:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 161[.]35[.]115[.]28:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 8aafe420b4e2d00e1f85a0374787a0e1
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8aafe420b4e2d00e1f85a0374787a0e1SHA1: 283579190345db13963c73ba48467a6306840547ANALYSIS DATE: 2022-11-23T19:12:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 4e66f4af565563d95fe443d36dca93a0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: 4e66f4af565563d95fe443d36dca93a0SHA1: 81ea30f87ae9e096e8bafeab1affbd5e1c0ba51fANALYSIS DATE: 2022-11-23T19:06:20ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – a2716bd9f4f7f0ffa5b49881df348602
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: a2716bd9f4f7f0ffa5b49881df348602SHA1: 04a49bd555bb591fe7b9d9ea3b3e08494aecdf42ANALYSIS DATE: 2022-11-23T19:05:58ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – ca680d9f26a0e5e9a4c2294c488bf46b
Score: 1 MALWARE FAMILY: TAGS:MD5: ca680d9f26a0e5e9a4c2294c488bf46bSHA1: f129f6c0e1ef884a6e1ac1b4e526d34ed8f02c37ANALYSIS DATE: 2022-11-23T19:21:43ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 149[.]248[.]20[.]183:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]182[.]211[.]71:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]19[.]149:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]37[.]185:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 6fb99593905840cf95ab2364c4c87d63
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6fb99593905840cf95ab2364c4c87d63SHA1: 8d0aafee1cabe7b6cc0caf93ffafd3da3bff8b9bANALYSIS DATE: 2022-11-23T20:48:15ZTTPS: T1082, T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 33cf9aac2e4768e8c9e10aeb8f6a9ad6
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 33cf9aac2e4768e8c9e10aeb8f6a9ad6SHA1: 8c0ba6cafeb8b38a964bc178b96233af7e89f5e7ANALYSIS DATE: 2022-11-23T19:22:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – 444072ec68d9dad8de5f9060c74e3b90
Score: 7 MALWARE FAMILY: TAGS:MD5: 444072ec68d9dad8de5f9060c74e3b90SHA1: f3845470366d4ce52a18492f279e3a89ef25e485ANALYSIS DATE: 2022-11-23T19:53:54ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – b3429e9f4084ec931dad480f0940f97f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: b3429e9f4084ec931dad480f0940f97fSHA1: 0c1ba0f19fa049d3bef2d52ccbd816bb04916a84ANALYSIS DATE: 2022-11-23T22:31:54ZTTPS: T1012, T1222, T1082, T1005,...
Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
