Evilgophish – Evilginx2 + Gophish
Combination of Once you have run setup.sh, the next steps are: Configure SMS message template. You will use Text only...
Year: 2022
Malware Analysis – discovery – 098a49e0eea24ae4b9c8f01c4ecc6410
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 098a49e0eea24ae4b9c8f01c4ecc6410SHA1: 8a16646bfcc53306a7111deb7a7c2fc57a052146ANALYSIS DATE: 2022-11-07T01:08:43ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 072a6140a28e55101fee9167e120d586
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 072a6140a28e55101fee9167e120d586SHA1: 0dbc2cd69d6f3269d47e147699abbe7e0056efafANALYSIS DATE: 2022-11-07T01:25:53ZTTPS: T1060, T1112, T1004, T1082, T1012, T1120, T1158, T1091,...
Malware Analysis – evasion – 0d3f25e56a2706965f7d95be341a8db7
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 0d3f25e56a2706965f7d95be341a8db7SHA1: ac9fea21a1a7cc4fbfd73dba7f74c99588d7d12bANALYSIS DATE: 2022-11-07T01:25:55ZTTPS: T1091, T1082, T1088, T1089, T1112, T1060, T1490, T1012,...
Malware Analysis – amadey – a7062b280c73121ba6fe76e004c97b00
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – – 00f8c032d59bbdd6f4f652e2c9848dcf
Score: 1 MALWARE FAMILY: TAGS:MD5: 00f8c032d59bbdd6f4f652e2c9848dcfSHA1: e0a445e5772cf8856b1470af93c056ccde696e50ANALYSIS DATE: 2022-11-07T08:59:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 0e597757a5259b33b39b352382ce895a
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 0e597757a5259b33b39b352382ce895aSHA1: febeb4884830916a098a176a4808018edd2ab120ANALYSIS DATE: 2022-11-07T01:58:46ZTTPS: T1222, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – 932cbc0036a7bbd8608c8b37e1c62107
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 932cbc0036a7bbd8608c8b37e1c62107SHA1: 24ce74cc99a1de006c75efdcb283dce32798c840ANALYSIS DATE: 2022-11-07T09:48:18ZTTPS: T1490, T1059, T1107, T1485, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware...
Malware Analysis – privateloader – ebcdfc509d4e6eea4c1692b03675e55d
Score: 10 MALWARE FAMILY: privateloaderTAGS:family:privateloader, family:redline, family:smokeloader, botnet:all, botnet:suk, backdoor, discovery, evasion, infostealer, loader, main, persistence, spyware, stealer, trojanMD5: ebcdfc509d4e6eea4c1692b03675e55dSHA1:...
Malware Analysis – discovery – ba9bbc1f583f5f93bb78628fc73f61c3
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: ba9bbc1f583f5f93bb78628fc73f61c3SHA1: b4c439b7834ec26adf8c8eb71b18ede3a20b51eaANALYSIS DATE: 2022-11-07T09:22:28ZTTPS: T1012, T1082, T1130, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 7844d97ae3dc5876d2c89a5f02415ba6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 7844d97ae3dc5876d2c89a5f02415ba6SHA1: 8d7e1daa16ff8f48a759c0fbb12a735172e74df8ANALYSIS DATE: 2022-11-07T09:35:22ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 198[.]44[.]140[.]97:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]135[.]101[.]188:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – amadey – e735a97e4e0e565f98ac40c3ed93336f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan,...
Malware Analysis – discovery – 1a7056340d8f6a6360ea3364e09830ed
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 1a7056340d8f6a6360ea3364e09830edSHA1: 64b0ae5d704ea5a3b40a7f740fd3844ef3a9ae10ANALYSIS DATE: 2022-11-07T10:34:50ZTTPS: T1012, T1082, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – wannacry – 9b1e56e3e4afe02a712896995a7dbd96
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 9b1e56e3e4afe02a712896995a7dbd96SHA1: 7ba0ff52478158d16ec0f5120d9df6dd527354f9ANALYSIS DATE: 2022-11-07T10:40:25ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – smokeloader – 6f4c50af40764e40f85bd818f290eb3e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6f4c50af40764e40f85bd818f290eb3eSHA1: 7d95ee920cf491c69831a8e377f42325ac5751baANALYSIS DATE: 2022-11-07T10:21:36ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – e0aea896a0d1aafcf00413ca920b69f7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: e0aea896a0d1aafcf00413ca920b69f7SHA1: c065f93451fbff65d9d5255d2a5671571b8973e6ANALYSIS DATE: 2022-11-07T11:02:45ZTTPS: T1060, T1112, T1222, T1082, T1012,...
Malware Analysis – amadey – 7bb3cf423412fe38357326945d4031b0
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – ryuk – 622bc38dee08e70e91e2be32a58b6d1f
Score: 10 MALWARE FAMILY: ryukTAGS:family:ryuk, discovery, evasion, ransomwareMD5: 622bc38dee08e70e91e2be32a58b6d1fSHA1: 7cfec4859fa7ca178095983b3f174f842a44b0c2ANALYSIS DATE: 2022-11-07T11:53:59ZTTPS: T1222, T1053, T1082, T1012, T1120, T1158 ScoreMeaningExample10Known badA...
Malware Analysis – wannacry – ffa761aaad7398b58c98b7de186783bf
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: ffa761aaad7398b58c98b7de186783bfSHA1: df00acaf9cfd869fdd5689ea276bc678e569431eANALYSIS DATE: 2022-11-07T11:00:37ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
UK NCSC govt agency is scanning the Internet for flawed devices in the UK
The UK National Cyber Security Centre (NCSC) announced that is scanning all Internet-exposed devices hosted in the UK for vulnerabilities....
Daily Vulnerability Trends: Mon Nov 07 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-25337Improper access control in clipboard service in Samsung mobile devices prior to...
Abusing Microsoft Dynamics 365 Customer Voice in phishing attacks
Researchers uncovered a campaign abusing Microsoft Dynamics 365 customer voice to steal credentials from the victims. Microsoft’s Dynamics 365 Customer...
