Year: 2022

LilithBot Malware, a new MaaS offered by the Eternity Group

October 7, 2022

Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...

A look at the 2020–2022 ATM/PoS malware landscape

October 7, 2022

During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale...

LilithBot Malware, a new MaaS offere by the Eternity Group

October 7, 2022

Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...

Malware Analysis – djvu – 890e8e2011fc7a98a91d27746288d45b

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:06:39ZTTPS: T1102, T1012, T1120,...

Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b

October 7, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:04:25ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b

October 7, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 30a3128f9027608e605a7bc649368072

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 30a3128f9027608e605a7bc649368072SHA1: 0a75b16d5c953bd13441dad69bd68a91410c3f3cANALYSIS DATE: 2022-10-07T03:27:25ZTTPS: T1012, T1060, T1112, T1222,...

Malware Analysis – djvu – 95f7ca058006800e6d0db8190b5bbc23

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95f7ca058006800e6d0db8190b5bbc23SHA1: 00e8525af59c61354ca37c5847200f9a5b294ceaANALYSIS DATE: 2022-10-07T03:20:28ZTTPS: T1222, T1082, T1053, T1012,...

Malware Analysis – djvu – 925d49af178b98a12118f93c8a82422d

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 925d49af178b98a12118f93c8a82422dSHA1: cbeff9068bfe1f440053f42484af914962e58c40ANALYSIS DATE: 2022-10-07T02:19:23ZTTPS: T1060, T1112, T1222, T1012,...

Malware Analysis – djvu – 1d0ec78f9be7ee4a512f894d3f0be3cc

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1d0ec78f9be7ee4a512f894d3f0be3ccSHA1: 7cdf3682f9937e87299173f01f7d262eb11e0ac6ANALYSIS DATE: 2022-10-07T02:32:08ZTTPS: T1060, T1112, T1222, T1082,...

Malware Analysis – dcrat – 9c9891d87460cd4e2074c0e21998ef52

October 7, 2022

Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:smokeloader, family:vidar, botnet:517, botnet:884d084df0d90657bc52b99e12a5611c, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...

Malware Analysis – blackbasta – 6d5b9675b68bac95b885b4bb294134a1

October 7, 2022

Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, evasion, ransomwareMD5: 6d5b9675b68bac95b885b4bb294134a1SHA1: 74dbf463be3139a28d9851b3b80c2ecac3e56304ANALYSIS DATE: 2022-10-07T03:40:04ZTTPS: T1490, T1491, T1112, T1082, T1107 ScoreMeaningExample10Known badA malware family...

Malware Analysis – smokeloader – 9c9891d87460cd4e2074c0e21998ef52

October 7, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9c9891d87460cd4e2074c0e21998ef52SHA1: e51b3200b7967890d25fb00b00b730f373dce7ffANALYSIS DATE: 2022-10-07T03:32:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – chaos – fbd7e50091e64349827d1a62947ce042

October 7, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: fbd7e50091e64349827d1a62947ce042SHA1: 22db7cddf60c5eadeedafc4ce7f27530a06899f4ANALYSIS DATE: 2022-10-07T03:40:04ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – blackbasta – 6d5b9675b68bac95b885b4bb294134a1

October 7, 2022

Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, evasion, ransomwareMD5: 6d5b9675b68bac95b885b4bb294134a1SHA1: 74dbf463be3139a28d9851b3b80c2ecac3e56304ANALYSIS DATE: 2022-10-07T03:42:04ZTTPS: T1490, T1082, T1012, T1107, T1491, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

October 7, 2022

Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, persistence, ransomwareMD5: c115bbbdb1a61f8c553d74802bfd78fbSHA1: 1f439569e3c1c14ea9f02235f8f45c49e2764160ANALYSIS DATE: 2022-10-07T03:45:26ZTTPS: T1012, T1082, T1060, T1112, T1107, T1490, T1491 ScoreMeaningExample10Known badA...

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

October 7, 2022

Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: c115bbbdb1a61f8c553d74802bfd78fbSHA1: 1f439569e3c1c14ea9f02235f8f45c49e2764160ANALYSIS DATE: 2022-10-07T03:42:52ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

October 7, 2022

Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, ransomwareMD5: c115bbbdb1a61f8c553d74802bfd78fbSHA1: 1f439569e3c1c14ea9f02235f8f45c49e2764160ANALYSIS DATE: 2022-10-07T03:40:04ZTTPS: T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – smokeloader – 14309ebba0bb552a9bbbf640301313ed

October 7, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 14309ebba0bb552a9bbbf640301313edSHA1: 104e44044325cc19415232de78e0146e45ef17c4ANALYSIS DATE: 2022-10-07T04:31:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – dcrat – 14309ebba0bb552a9bbbf640301313ed

October 7, 2022

Malware Analysis – djvu – dfcb8ba262be97d0c87031c6c8cd4abb

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: dfcb8ba262be97d0c87031c6c8cd4abbSHA1: fca9b0f065baced918451eaabf4779505ea81bd3ANALYSIS DATE: 2022-10-07T04:20:55ZTTPS: T1053, T1012, T1082, T1060,...

Malware Analysis – djvu – 6747e6c476e9a424f200ab855a7e608a

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6747e6c476e9a424f200ab855a7e608aSHA1: e3a8b85e2ef091416bbf72f9384257bb6fc97653ANALYSIS DATE: 2022-10-07T04:38:59ZTTPS: T1053, T1005, T1081, T1012,...

Parrot 5.1 – Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind

October 7, 2022

Parrot OS 5.1 is officially released. We're proud to say that the new version of Parrot OS 5.1 is available...

Malware Analysis – djvu – 5ec6d8582f6ab8401fe667bc22ed639f

October 7, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 5ec6d8582f6ab8401fe667bc22ed639fSHA1: f51d073d99e98f0b23595738b927775fd72e9116ANALYSIS DATE: 2022-10-06T20:00:19ZTTPS: T1053, T1005, T1081, T1222,...

Year: 2022

LilithBot Malware, a new MaaS offered by the Eternity Group

A look at the 2020–2022 ATM/PoS malware landscape

LilithBot Malware, a new MaaS offere by the Eternity Group

Malware Analysis – djvu – 890e8e2011fc7a98a91d27746288d45b

Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b

Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b

Malware Analysis – djvu – 30a3128f9027608e605a7bc649368072

Malware Analysis – djvu – 95f7ca058006800e6d0db8190b5bbc23

Malware Analysis – djvu – 925d49af178b98a12118f93c8a82422d

Malware Analysis – djvu – 1d0ec78f9be7ee4a512f894d3f0be3cc

Malware Analysis – dcrat – 9c9891d87460cd4e2074c0e21998ef52

Malware Analysis – blackbasta – 6d5b9675b68bac95b885b4bb294134a1

Malware Analysis – smokeloader – 9c9891d87460cd4e2074c0e21998ef52

Malware Analysis – chaos – fbd7e50091e64349827d1a62947ce042

Malware Analysis – blackbasta – 6d5b9675b68bac95b885b4bb294134a1

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

Malware Analysis – blackbasta – c115bbbdb1a61f8c553d74802bfd78fb

Malware Analysis – smokeloader – 14309ebba0bb552a9bbbf640301313ed

Malware Analysis – dcrat – 14309ebba0bb552a9bbbf640301313ed

Malware Analysis – djvu – dfcb8ba262be97d0c87031c6c8cd4abb

Malware Analysis – djvu – 6747e6c476e9a424f200ab855a7e608a

Parrot 5.1 – Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind

Malware Analysis – djvu – 5ec6d8582f6ab8401fe667bc22ed639f

CVE Alert: CVE-2024-40696

CVE Alert: CVE-2023-38739

CVE Alert: CVE-2024-47103

CVE Alert: CVE-2024-49807

CVE Alert: CVE-2024-47116

You may have missed