Cobalt Stike Beacon Detected – 5[.]44[.]42[.]14:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Cobalt Stike Beacon Detected – 124[.]221[.]195[.]114:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 205[.]185[.]119[.]170:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – a1a707c217336e4ae154a23f36f3608d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: a1a707c217336e4ae154a23f36f3608dSHA1: 23e83155a5741a21cfae3f635ba964f308b2da8eANALYSIS DATE: 2022-10-05T20:31:27ZTTPS: T1130, T1112, T1102,...
Malware Analysis – djvu – 47343ccd035c2123139b06a606f676dd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 47343ccd035c2123139b06a606f676ddSHA1: d16e1331d5dd2011a2f5a31b027421c8559313e1ANALYSIS DATE: 2022-10-05T20:43:11ZTTPS: T1222, T1060, T1112, T1005,...
Malware Analysis – smokeloader – a1a707c217336e4ae154a23f36f3608d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a1a707c217336e4ae154a23f36f3608dSHA1: 23e83155a5741a21cfae3f635ba964f308b2da8eANALYSIS DATE: 2022-10-05T20:31:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – d83d5eb2e04dfb86886580c499e8c6c8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d83d5eb2e04dfb86886580c499e8c6c8SHA1: 5cc72ad56333105c3125c347996a375f6eea3ff1ANALYSIS DATE: 2022-10-05T21:04:30ZTTPS: T1005, T1081, T1012, T1060,...
Cobalt Stike Beacon Detected – 84[.]32[.]188[.]232:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 143[.]110[.]144[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]29[.]162:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader –
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: SHA1: ANALYSIS DATE: 2022-10-05T21:48:24ZTTPS: T1112, T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – djvu – fec683cf03741607291f6c6b8022c98c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fec683cf03741607291f6c6b8022c98cSHA1: 18a49af627edf179525029421e11209940eae738ANALYSIS DATE: 2022-10-05T22:02:26ZTTPS: T1012, T1005, T1081, T1060,...
Malware Analysis – smokeloader – 0b28c768b2688d0b845c6cc8fd1c0c0d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0b28c768b2688d0b845c6cc8fd1c0c0dSHA1: 9c90b3b6675075e7e36199f9ece3fd4d8231b810ANALYSIS DATE: 2022-10-05T21:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 0b28c768b2688d0b845c6cc8fd1c0c0d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0b28c768b2688d0b845c6cc8fd1c0c0dSHA1: 9c90b3b6675075e7e36199f9ece3fd4d8231b810ANALYSIS DATE: 2022-10-05T21:43:30ZTTPS:...
Malware Analysis – djvu – fed15979d927202175a67f39a2de5b73
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:1681, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: fed15979d927202175a67f39a2de5b73SHA1: 541da8999a0f81a12122344eeafe3b030a09a4abANALYSIS DATE:...
Malware Analysis – djvu – 63c01caec4e90ba172267c966f717737
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 63c01caec4e90ba172267c966f717737SHA1: cc53db13dedd5b2ccecfd8e726f07af298496173ANALYSIS DATE: 2022-10-05T22:44:44ZTTPS: T1053, T1005, T1081, T1222,...
Malware Analysis – smokeloader – fed15979d927202175a67f39a2de5b73
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fed15979d927202175a67f39a2de5b73SHA1: 541da8999a0f81a12122344eeafe3b030a09a4abANALYSIS DATE: 2022-10-05T22:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – a485514c993967e9b55c4dcff24e9eea
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a485514c993967e9b55c4dcff24e9eeaSHA1: 7c3e4da9fdbef9ef564457e7b715bd78051b85e2ANALYSIS DATE: 2022-10-05T22:05:41ZTTPS: T1060, T1112, T1222, T1005,...
How Water Labbu Exploits Electron-Based Applications
In the second part of our Water Labbu blog series, we explore how the threat actor exploits Electron-based applications using...
US-CERT Bulletin (SB22-276):Vulnerability Summary for the Week of September 26, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
New Maggie malware already infected over 250 Microsoft SQL servers
Hundreds of Microsoft SQL servers all over the world have been infected with a new piece of malware tracked as Maggie....
Malware Analysis – smokeloader – fbb043bd8741a259448382485bd29dd6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fbb043bd8741a259448382485bd29dd6SHA1: 521882d7a76d6496f800bf5e652e5bd5c07ab1f8ANALYSIS DATE: 2022-10-05T17:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
LockBit 3.0 Ransomware Victim: apunipima[.]org[.]au
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
