Cobalt Stike Beacon Detected – 51[.]140[.]141[.]107:83
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Cobalt Stike Beacon Detected – 43[.]143[.]180[.]62:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]34[.]117[.]22:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]90:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]162[.]105:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]99[.]93[.]200:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]227[.]252[.]247:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 52[.]57[.]127[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]198[.]163:8033
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 144[.]34[.]164[.]76:8889
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]4[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – venus – 38d8f55b3a4b6871b5e62fdc73c504d6
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, evasion, persistence, ransomwareMD5: 38d8f55b3a4b6871b5e62fdc73c504d6SHA1: 102b8625e5662c89efe4547dc2cb173be8b08851ANALYSIS DATE: 2022-11-18T09:06:42ZTTPS: T1018, T1031, T1060, T1112, T1082, T1012, T1120 ScoreMeaningExample10Known...
Malware Analysis – venus – 1c45c33e9884cb10264c1a2a0255e72a
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, evasion, persistence, ransomwareMD5: 1c45c33e9884cb10264c1a2a0255e72aSHA1: 1992336a5d752187c979e24a95a871d8932ade6dANALYSIS DATE: 2022-11-18T09:06:41ZTTPS: T1031, T1082, T1012, T1120, T1060, T1112, T1018 ScoreMeaningExample10Known...
Malware Analysis – djvu – 045d54b0d3abb25388920575931dc808
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Malware Analysis – venus – 99bc5e82135557b8e571b2deab9f297f
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, persistence, ransomware, spyware, stealerMD5: 99bc5e82135557b8e571b2deab9f297fSHA1: ec11f6abf13044a438a7f363bda2c9d5709d2475ANALYSIS DATE: 2022-11-18T09:09:43ZTTPS: T1060, T1112, T1082, T1018, T1012, T1120, T1005,...
Malware Analysis – djvu – de4b9445fa8264a29eecd2dd00a39fa7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: de4b9445fa8264a29eecd2dd00a39fa7SHA1: 0174d80ae151becb119020489834849049d15c0bANALYSIS DATE: 2022-11-18T10:45:53ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – chaos – f6e9a9c91ab4cb5dcc9e1c6e9aa2e3a5
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: f6e9a9c91ab4cb5dcc9e1c6e9aa2e3a5SHA1: 76831eb24a45cf1b27464879e9fe8806fa856084ANALYSIS DATE: 2022-11-18T10:28:03ZTTPS: T1490, T1059, T1107, T1491, T1112, T1005, T1081,...
Malware Analysis – dcrat – 89c367f90c1cd21cf580807cf4d5cb19
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, rat,...
Malware Analysis – djvu – 75a94380a8882221cfcd80d761db68b5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 75a94380a8882221cfcd80d761db68b5SHA1: cd1beb5a0bfa1d448d04a68ff9dc2f1b6286bbadANALYSIS DATE: 2022-11-18T10:15:56ZTTPS: T1005, T1081, T1222, T1012,...
BACKCLICK Professional command execution | CVE-2022-43999
NAME BACKCLICK Professional command execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION BACKCLICK Professional could allow a remote attacker to execute arbitrary...
BACKCLICK Professional command execution | CVE-2022-44000
NAME BACKCLICK Professional command execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION BACKCLICK Professional could allow a remote attacker to execute arbitrary...
BACKCLICK Professional information disclosure | CVE-2022-44004
NAME BACKCLICK Professional information disclosure Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION BACKCLICK Professional could allow a remote attacker to bypass security...
