Year: 2022

NCSC issues fresh guidance following recent rise in supply chain cyber attacks

October 12, 2022

N New cyber security guidance issued in response to growing trend in supply chain attacks GCHQ’s National Cyber Security Centre...

Microsoft Patch Tuesday for October 2022 doesn’t fix Exchange Server flaws

October 12, 2022

Microsoft Patch Tuesday security updates for October 2022 addressed a total of 85 security vulnerabilities, including an actively exploited zero-day. Microsoft...

SteaLinG – Open-Source Penetration Testing Framework Designed For Social Engineering

October 12, 2022

The SteaLinG is an open-source penetration testing framework designed for social engineering After the hack, you can upload it to...

LockBit 3.0 Ransomware Victim: martel[.]es

October 12, 2022

LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Malware Analysis – ransomware – b812599e422e43884d82d78291f85c11

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: b812599e422e43884d82d78291f85c11SHA1: d4c179b0bfb8adceccdbad168dd662738fad770eANALYSIS DATE: 2022-10-12T08:05:05ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 9e36523ee2bd21f75d43eb24f1ebf2aa

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 9e36523ee2bd21f75d43eb24f1ebf2aaSHA1: 5634cfcf86bcbc7b0951ea77f2f9381226e6c8efANALYSIS DATE: 2022-10-12T08:05:11ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – wannacry – 00f6f68aef14d7e633718fd98c5849bf

October 12, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 00f6f68aef14d7e633718fd98c5849bfSHA1: d1ecadafb4afad7e8d68f5e569a42ab62dfcccf0ANALYSIS DATE: 2022-10-12T08:06:05ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – djvu – 83524a6ab3c6d94fb3e3d0e798902662

October 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 83524a6ab3c6d94fb3e3d0e798902662SHA1: 7f1e31f3027c3b7d769880bb8e55ca869ce0e29dANALYSIS DATE:...

Malware Analysis – wannacry – 5cfb415656b90415c61f63f926687bba

October 12, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 5cfb415656b90415c61f63f926687bbaSHA1: 38f948257e65bce017effb1dd4166b45857a8664ANALYSIS DATE: 2022-10-12T08:07:03ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – djvu – 361ad8caea536bb548de7dd173f39cb4

October 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 361ad8caea536bb548de7dd173f39cb4SHA1: bc29e8b86b2e754fdf4ab7a77aae492613dbe443ANALYSIS DATE: 2022-10-12T08:39:48ZTTPS: T1053, T1005, T1081, T1012,...

Malware Analysis – ransomware – dd9d34b2bcaf57ed5192ca1b73139a46

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: dd9d34b2bcaf57ed5192ca1b73139a46SHA1: 5b3e4f618ab14b7ac03dfd732fede5ace95d5566ANALYSIS DATE: 2022-10-12T08:42:07ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – agilenet – 0906bfbcac00c26b080d3ba4f4542579

October 12, 2022

Score: 9 MALWARE FAMILY: agilenetTAGS:agilenet, evasion, themida, trojanMD5: 0906bfbcac00c26b080d3ba4f4542579SHA1: eca76f73d94d388b51d3b5f97525ab49fb47f8c6ANALYSIS DATE: 2022-10-12T08:50:51ZTTPS: T1012, T1497, T1082 ScoreMeaningExample10Known badA malware family was...

Malware Analysis – ransomware – e7af06880e648da328b170608a6ab9e4

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: e7af06880e648da328b170608a6ab9e4SHA1: 3148ecca25ac16843b80c289b98ef663ee3ed5e7ANALYSIS DATE: 2022-10-12T08:42:07ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 46841f22a5e3c6f4d1f19a09ce2e85a7

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 46841f22a5e3c6f4d1f19a09ce2e85a7SHA1: 00e17f432ea96b23bd530a9bf84d1884c41315ddANALYSIS DATE: 2022-10-12T08:42:07ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Malware Analysis – chaos – e94273df0cf8cfcc0388c1766b95db35

October 12, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: e94273df0cf8cfcc0388c1766b95db35SHA1: c9e94a5c814ac1deeed5156deea9554c235669c8ANALYSIS DATE: 2022-10-12T09:01:04ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – chaos – 972a7ec082b4f656e83ab52cc2d33ad9

October 12, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, spyware, stealerMD5: 972a7ec082b4f656e83ab52cc2d33ad9SHA1: 95c354498543071fa3501f3be69fe73ebd437171ANALYSIS DATE: 2022-10-12T09:01:04ZTTPS: T1082, T1005, T1081 ScoreMeaningExample10Known badA malware family was...

Malware Analysis – djvu – 4bcbc94309a30321de467b75b11ddafc

October 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 4bcbc94309a30321de467b75b11ddafcSHA1: c32afe3534e04cdd129bd5b971a7dc1e4842c2feANALYSIS DATE: 2022-10-12T09:22:07ZTTPS: T1222, T1053, T1130, T1112,...

Malware Analysis – ransomware – 641645f7373be3c2e7575bcc67256a95

October 12, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 641645f7373be3c2e7575bcc67256a95SHA1: 281595d0916272e209626fb753186419d217d6daANALYSIS DATE: 2022-10-12T09:27:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Cobalt Stike Beacon Detected – 120[.]77[.]18[.]7:8443

October 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 193[.]149[.]180[.]68:443

October 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 158[.]247[.]238[.]127:443

October 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – danabot – 3ba364b7ab9f5fadb3a784c1b9b206eb

October 12, 2022

Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 3ba364b7ab9f5fadb3a784c1b9b206ebSHA1:...

Malware Analysis – ransomware – 0402655e4f75daffcc9beadc441a0bce

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 0402655e4f75daffcc9beadc441a0bceSHA1: 8cf30f46b324180e8df5ce69cdb8f2e47e6267fcANALYSIS DATE: 2022-10-12T09:41:05ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 16802b405f185879f0b27dae7d8a5c71

October 12, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 16802b405f185879f0b27dae7d8a5c71SHA1: 49596f69dae97b8f52ac8d3b5055b0bd72e6062cANALYSIS DATE: 2022-10-12T09:41:07ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...

Year: 2022

NCSC issues fresh guidance following recent rise in supply chain cyber attacks

Microsoft Patch Tuesday for October 2022 doesn’t fix Exchange Server flaws

SteaLinG – Open-Source Penetration Testing Framework Designed For Social Engineering

LockBit 3.0 Ransomware Victim: martel[.]es

Malware Analysis – ransomware – b812599e422e43884d82d78291f85c11

Malware Analysis – ransomware – 9e36523ee2bd21f75d43eb24f1ebf2aa

Malware Analysis – wannacry – 00f6f68aef14d7e633718fd98c5849bf

Malware Analysis – djvu – 83524a6ab3c6d94fb3e3d0e798902662

Malware Analysis – wannacry – 5cfb415656b90415c61f63f926687bba

Malware Analysis – djvu – 361ad8caea536bb548de7dd173f39cb4

Malware Analysis – ransomware – dd9d34b2bcaf57ed5192ca1b73139a46

Malware Analysis – agilenet – 0906bfbcac00c26b080d3ba4f4542579

Malware Analysis – ransomware – e7af06880e648da328b170608a6ab9e4

Malware Analysis – ransomware – 46841f22a5e3c6f4d1f19a09ce2e85a7

Malware Analysis – chaos – e94273df0cf8cfcc0388c1766b95db35

Malware Analysis – chaos – 972a7ec082b4f656e83ab52cc2d33ad9

Malware Analysis – djvu – 4bcbc94309a30321de467b75b11ddafc

Malware Analysis – ransomware – 641645f7373be3c2e7575bcc67256a95

Cobalt Stike Beacon Detected – 120[.]77[.]18[.]7:8443

Cobalt Stike Beacon Detected – 193[.]149[.]180[.]68:443

Cobalt Stike Beacon Detected – 158[.]247[.]238[.]127:443

Malware Analysis – danabot – 3ba364b7ab9f5fadb3a784c1b9b206eb

Malware Analysis – ransomware – 0402655e4f75daffcc9beadc441a0bce

Malware Analysis – ransomware – 16802b405f185879f0b27dae7d8a5c71

[FOG] – Ransomware Victim: Gitlabs: Professional Computer, X-Pans, Propulsion Academy AG

CVE Alert: CVE-2024-7695

CVE Alert: CVE-2024-13696

CVE Alert: CVE-2024-12749

CVE Alert: CVE-2021-3978

You may have missed