Cobalt Stike Beacon Detected – 37[.]1[.]215[.]252:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Malware Analysis – ransomware – 494e3311b77bd7173db9e49d58e07ff6
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 494e3311b77bd7173db9e49d58e07ff6SHA1: e0744371ad811861248b9f64ab79e0f72b6aa364ANALYSIS DATE: 2022-10-24T09:01:37ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – troldesh – 410e3c46640ebe10ff385540270fad1e
Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, persistence, ransomware, trojan, upxMD5: 410e3c46640ebe10ff385540270fad1eSHA1: d16ff7d0953c480761e6af69bc81cf3a053e7defANALYSIS DATE: 2022-10-24T09:05:39ZTTPS: T1060, T1112, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – c2bd252af4f49125f73f6fba509d70b3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:nam7, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: c2bd252af4f49125f73f6fba509d70b3SHA1:...
Malware Analysis – wannacry – 30b913fddae5295308cf3fd63ee35d5c
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 30b913fddae5295308cf3fd63ee35d5cSHA1: 41585b5d933873c2ac72e35a2a0d9aa85a5a7a88ANALYSIS DATE: 2022-10-24T09:00:28ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – 38d1b2f7932a78ff1c6192285b03c99a
Score: 1 MALWARE FAMILY: TAGS:MD5: 38d1b2f7932a78ff1c6192285b03c99aSHA1: 0a3e39b568b4a1f25e67e41ed3e5d519addf6025ANALYSIS DATE: 2022-10-24T09:30:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 23944ece875fe0e9874752aecfb12ef0
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 23944ece875fe0e9874752aecfb12ef0SHA1: 05eb228acf723b1230eceb31fb46bbe0811cc23dANALYSIS DATE: 2022-10-24T09:40:16ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 880130a4c1a01e4c611f85576cfd9661
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 880130a4c1a01e4c611f85576cfd9661SHA1: 1b3f69b09e79663a5a1e5c30e0b58b69fc7dd673ANALYSIS DATE: 2022-10-24T09:38:44ZTTPS: T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – ransomware – 9bbf7b9ccdc0328c797b9290b66101ab
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 9bbf7b9ccdc0328c797b9290b66101abSHA1: 573a942f6f7e4778e2e54b18fa537adb5919df3cANALYSIS DATE: 2022-10-24T09:40:22ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – – 7369debfdc6669f8ef7c3b166b4bf041
Score: 1 MALWARE FAMILY: TAGS:MD5: 7369debfdc6669f8ef7c3b166b4bf041SHA1: 9bdf47f361536d04057121835e04dead701ec134ANALYSIS DATE: 2022-10-24T09:51:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – bbb3d02b1741d7ce95e2e3780ce5cb7b
Score: 1 MALWARE FAMILY: TAGS:MD5: bbb3d02b1741d7ce95e2e3780ce5cb7bSHA1: 932292ecd108e71e5eacfbcb9985a5c67259125cANALYSIS DATE: 2022-10-24T10:07:19ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – 49aa80367a6609b3e74f25c8e161459b
Score: 7 MALWARE FAMILY: TAGS:MD5: 49aa80367a6609b3e74f25c8e161459bSHA1: fcb94c4cea61fa21a8fa4960514cc33ae94d02a2ANALYSIS DATE: 2022-10-24T10:00:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – 4665ba56c2b7a6b9fbebf62c3785979d
Score: 1 MALWARE FAMILY: TAGS:MD5: 4665ba56c2b7a6b9fbebf62c3785979dSHA1: 799cd700dded3a1059b04974cdd3c8790695c5a8ANALYSIS DATE: 2022-10-24T10:13:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – locky – da863294f14ea0c1ab3e68ba6b45f0cf
Score: 10 MALWARE FAMILY: lockyTAGS:family:locky, ransomwareMD5: da863294f14ea0c1ab3e68ba6b45f0cfSHA1: c9143d4a1ef5d493660832efef9ff5df52e39a55ANALYSIS DATE: 2022-10-24T10:28:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 1823a652c5e16ec21c93b389ace3aa4a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:nam7, botnet:newe, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – wannacry – f7c34b753c7230c8a312de2a6a1a2ab0
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: f7c34b753c7230c8a312de2a6a1a2ab0SHA1: 635ddf63f95e34967d2d8653d2d08f4f76177876ANALYSIS DATE: 2022-10-24T10:40:20ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – b0274b076c0242d074f13100d87b87a7
Score: 1 MALWARE FAMILY: TAGS:MD5: b0274b076c0242d074f13100d87b87a7SHA1: ff4089753080f562aa75b737c3017682e3e48e05ANALYSIS DATE: 2022-10-24T10:40:24ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Oracle E-Business Suite Web Applications Desktop Integrator Application Service unspecified | CVE-2022-21587
NAME Oracle E-Business Suite Web Applications Desktop Integrator Application Service unspecified Platforms Affected:Oracle Web Applications Desktop Integrator 12.2.3 Oracle Web...
Oracle E-Business Suite Web Applications Desktop Integrator Application Service unspecified | CVE-2022-39428
NAME Oracle E-Business Suite Web Applications Desktop Integrator Application Service unspecified Platforms Affected:Oracle Web Applications Desktop Integrator 12.2.3 Oracle Web...
F5 BIG-IP (Advanced WAF, ASM) code execution | CVE-2022-41617
NAME F5 BIG-IP (Advanced WAF, ASM) code execution Platforms Affected:F5 BIG-IP (ASM) 14.1.0 F5 BIG-IP (ASM) 13.1.0 F5 BIG-IP (ASM)...
Security experts targeted with malicious CVE PoC exploits on GitHub
Researchers discovered thousands of GitHub repositories that offer fake proof-of-concept (PoC) exploits for various flaws used to distribute malware. A team...
Daily Vulnerability Trends: Mon Oct 24 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-3493The overlayfs implementation in the linux kernel did not properly validate with...
Malware Analysis – djvu – 1767f81e6b15d8125fedcf58948e3a0a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1767f81e6b15d8125fedcf58948e3a0aSHA1: de2a93d8806ba8a0f33f24bbf37260dbf54c64b2ANALYSIS DATE: 2022-10-24T02:03:24ZTTPS: T1012, T1082, T1222, T1053,...
Malware Analysis – discovery – 94ea4ebdb5ff16a4468fe5fdea591243
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomware, spyware, stealerMD5: 94ea4ebdb5ff16a4468fe5fdea591243SHA1: 737419b9a66f61bb50b692aa7cd1eb2d740b9e4cANALYSIS DATE: 2022-10-24T02:40:22ZTTPS: T1490, T1059, T1107, T1005, T1081, T1012, T1120,...
