Cobalt Stike Beacon Detected – 1[.]117[.]91[.]33:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Cobalt Stike Beacon Detected – 83[.]97[.]20[.]148:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]112[.]201:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 89[.]238[.]185[.]24:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]14[.]198[.]89:8011
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 1607b60ccb7bc768acc7059b54a1d86a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1607b60ccb7bc768acc7059b54a1d86aSHA1: 94dd0783405cececd513b50f38d5c4cb3cf82f77ANALYSIS DATE: 2022-12-11T21:51:54ZTTPS: T1053, T1005, T1081, T1012,...
Cobalt Stike Beacon Detected – 47[.]100[.]180[.]46:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]40[.]43:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 64[.]190[.]113[.]81:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]139[.]69[.]104:8800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – dbfbbd262c73437383038a98fec9649c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, trojanMD5: dbfbbd262c73437383038a98fec9649cSHA1: 5f71018f5e12d8b1cbe309589b23a7666b2716b4ANALYSIS DATE: 2022-12-11T22:06:26ZTTPS:...
Malware Analysis – djvu – deb6e2ba0b5da298a176f135d0dbb902
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: deb6e2ba0b5da298a176f135d0dbb902SHA1: def2ce53e89d620734661d0e982c475fef4dacfaANALYSIS DATE: 2022-12-11T23:31:10ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – medusalocker – 489e246b8f55137cd70e4b2d718ff85f
Score: 10 MALWARE FAMILY: medusalockerTAGS:family:medusalocker, evasion, ransomware, spyware, stealer, trojanMD5: 489e246b8f55137cd70e4b2d718ff85fSHA1: 444e3fd11ac385ab333db41420e5c4fd2e47a5baANALYSIS DATE: 2022-12-11T23:15:45ZTTPS: T1082, T1112, T1005, T1081, T1088, T1089,...
Malware Analysis – spyware – 3c993362560f4f264f903489653e20db
Score: 8 MALWARE FAMILY: spywareTAGS:spyware, stealerMD5: 3c993362560f4f264f903489653e20dbSHA1: 06b0e451d95004b49cdde28357d716b3e798cc07ANALYSIS DATE: 2022-12-11T22:09:01ZTTPS: T1082, T1012, T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 8f5dcc39051655197379ccc45b20ea59
Score: 1 MALWARE FAMILY: TAGS:MD5: 8f5dcc39051655197379ccc45b20ea59SHA1: 2924f9bcab06c8323bd24080ca289b6d3c1d0a6aANALYSIS DATE: 2022-12-11T15:23:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 17c6bac6b04b88cdced96c37db03f6cb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 17c6bac6b04b88cdced96c37db03f6cbSHA1: f9878c8d39e06db584bcc7b1c0d3428f960da077ANALYSIS DATE: 2022-12-11T14:58:45ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – – 63acb0fc42adddeefed36db5b1ad61bb
Score: 1 MALWARE FAMILY: TAGS:MD5: 63acb0fc42adddeefed36db5b1ad61bbSHA1: 7ffe0a6043397f55fd794971cac56a79fc564c0aANALYSIS DATE: 2022-12-11T17:08:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – ed2b9cc570a6acb59b8d5a3ab04073bc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ed2b9cc570a6acb59b8d5a3ab04073bcSHA1: 5b7bf6615472520e94d39f270d21e09f91282770ANALYSIS DATE: 2022-12-11T16:20:34ZTTPS: T1222, T1082, T1012, T1005,...
Malware Analysis – djvu – d5c3b6fa21913ae9786e07beecc35f51
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d5c3b6fa21913ae9786e07beecc35f51SHA1: 7ba75800f149f4366d989380e887e0cf59f32398ANALYSIS DATE: 2022-12-11T17:32:53ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – dcrat – 24cdc5cbf2b60ee657c4a80ca5ef73e6
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Pwn2Own Toronto 2022 Day 4: $989K awarded for 63 unique zero-days
The Pwn2Own Toronto 2022 is ended, and the participants earned a total of $989,750 for 63 unique zero-day exploits. The...
Security Affairs newsletter Round 397
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Pyramid – A Tool To Help Operate In EDRs’ Blind Spots
What is it Pyramid is a set of Python scripts and module dependencies that can be used to evade EDRs....
Cobalt Stike Beacon Detected – 192[.]252[.]182[.]56:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
