BlackCat/ALPHV Ransomware Victim: Network Communications Inc
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Year: 2022
Malware Analysis – djvu – 4154fc7a72570db72966dccccb93f5ca
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1752, botnet:517, botnet:google2, botnet:mario23_10, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware,...
Malware Analysis – evasion – 931bd3160c08b92c4ff90b66b8efcec5
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 931bd3160c08b92c4ff90b66b8efcec5SHA1: c816e7d1a082f6b4ae8798958e3bf0daeb5c407bANALYSIS DATE: 2022-10-30T05:39:02ZTTPS: T1491, T1112, T1490, T1082, T1012, T1120, T1088, T1089,...
Malware Analysis – persistence – a2bf3ceb879904e6fe6fdaa80a6db39b
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a2bf3ceb879904e6fe6fdaa80a6db39bSHA1: dba07637840b84133a3cf8e9012d6a9b5c50d7f0ANALYSIS DATE: 2022-10-30T04:47:36ZTTPS: T1112, T1060, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – 9ca46c92ae6ab9a127917be16cbbf337
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 9ca46c92ae6ab9a127917be16cbbf337SHA1: b80a2ed9fe34575f709dff7badc5ea1d31eef986ANALYSIS DATE: 2022-10-30T15:40:39ZTTPS: T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – hive – 177417be748814f6168171a42545f9dd
Score: 10 MALWARE FAMILY: hiveTAGS:family:hive, evasion, ransomware, spyware, stealer, trojanMD5: 177417be748814f6168171a42545f9ddSHA1: 9c8b988e66e0fe6f9dab69b1055e4ee200531094ANALYSIS DATE: 2022-10-30T15:56:09ZTTPS: T1490, T1070, T1005, T1081, T1107, T1018,...
Malware Analysis – ransomware – 30c121c3995d7d7c5597b0b4d3047aa2
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 30c121c3995d7d7c5597b0b4d3047aa2SHA1: 4c80abe95de3788a5ff6b2e16175a68b76413643ANALYSIS DATE: 2022-10-30T15:40:33ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – d9956991845e1e275e0fc823133eebf2
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: d9956991845e1e275e0fc823133eebf2SHA1: d5c9a236ea6a8af8af49f1b95d9065d5d31be737ANALYSIS DATE: 2022-10-30T15:40:47ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – smokeloader – c7b987a36262b72c27d1e3282186f235
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c7b987a36262b72c27d1e3282186f235SHA1: f6722992a55c8d7ab60986725b0d07204b14c4a3ANALYSIS DATE: 2022-10-30T17:36:38ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 1bd2517f25e7ba3a3b9568c2768b66d9
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 1bd2517f25e7ba3a3b9568c2768b66d9SHA1: a7cd993dd6b820b4c8f4fd9973a29e1f779c5ac1ANALYSIS DATE: 2022-10-30T16:16:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – c862bbb79cf3512d444dec4acb489882
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1752, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – ransomware – 73daf946d8e6ca26d983209add90d970
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 73daf946d8e6ca26d983209add90d970SHA1: 4490a66af0cd16b30c6e189e44b5c900cc822fb4ANALYSIS DATE: 2022-10-30T16:09:37ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
BlackByte ransomware group hit Japanese beverage giant Asahi
The BlackByte ransomware group claims to have compromised the Japanese beer and beverage company Asahi. Asahi Group Holdings, Ltd. is a global Japanese beer,...
Air New Zealand warns of an ongoing credential stuffing attack
Air New Zealand suffered a security breach, multiple customers have been locked out of their accounts after the incident. Air...
Security Affairs newsletter Round 391
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Ermir – An Evil Java RMI Registry
Ermir is an Evil/Rogue RMI Registry, it public String list(): list() asks the registry for all the bound objects names,...
Cobalt Stike Beacon Detected – 124[.]221[.]244[.]47:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]89[.]196[.]231:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]45[.]123[.]7:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]148[.]236[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]236[.]239:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]155[.]198:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]23[.]61[.]52:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]144[.]204:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
