Cobalt Stike Beacon Detected – 121[.]4[.]102[.]199:8004
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Cobalt Stike Beacon Detected – 207[.]246[.]112[.]192:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]243[.]43:2052
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]39[.]0[.]141:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]222[.]142[.]185:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]7[.]253[.]226:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]122[.]167:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]167[.]39:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]92[.]64[.]196:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – xorist – 8ccce69652942733ae5ceadd4faf8320
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, bootkit, persistence, ransomware, spyware, stealer, upxMD5: 8ccce69652942733ae5ceadd4faf8320SHA1: d50c444d6959e851b56c7018b810b91ac7f9c14eANALYSIS DATE: 2022-12-05T15:43:30ZTTPS: T1005, T1081, T1067, T1060, T1112...
Malware Analysis – djvu – b6168370fa490017dfa9ddbd939e05ec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, botnet:mario23_10, bootkit, collection, infostealer, persistence, ransomware, spywareMD5: b6168370fa490017dfa9ddbd939e05ecSHA1: 3e2a117d88e76116e39e2f59a09189d665e7838bANALYSIS DATE: 2022-12-09T21:50:02ZTTPS: T1012, T1120, T1082,...
Malware Analysis – discovery – 91182cc38b2dcadf8bbbaca3319d6c55
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploitMD5: 91182cc38b2dcadf8bbbaca3319d6c55SHA1: ef9065fe80b54f2af060347995e584dc35b5f3b6ANALYSIS DATE: 2022-12-09T21:47:27ZTTPS: T1082, T1112, T1031, T1130, T1053, T1222, T1102, T1562, T1489...
Malware Analysis – djvu – d580b0420c8e330392c0d29bd9cba41b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d580b0420c8e330392c0d29bd9cba41bSHA1: 411d7f6a343892f03a91e059028ba7451c2e31b1ANALYSIS DATE: 2022-12-09T22:04:52ZTTPS: T1222, T1005, T1081, T1012,...
CISA: Cisco Releases Security Advisory for IP Phone 7800 and 8800 Series
Cisco Releases Security Advisory for IP Phone 7800 and 8800 Series Cisco released a security advisory for a vulnerability affecting...
Malware Analysis – ransomware – a4f3d5eeddec883ae9f91f194d22487b
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealer, upxMD5: a4f3d5eeddec883ae9f91f194d22487bSHA1: 245aeb595f74c284770238a924de27993296c571ANALYSIS DATE: 2022-12-09T22:12:23ZTTPS: T1491, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Malware Analysis – dcrat – a4b6c60f3f83fde712c7c3918d3d9533
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – wannacry – 0ee82d7d2714e2ddf579080c5460fea3
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, persistence, ransomware, spyware, stealer, wormMD5: 0ee82d7d2714e2ddf579080c5460fea3SHA1: f282646126dfcaf6b63bdc3109edbf4a0b0711f4ANALYSIS DATE: 2022-12-09T22:31:06ZTTPS: T1158, T1491, T1112, T1222, T1082,...
Malware Analysis – djvu – 47dcacc04b1554589058af45901c14f7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 47dcacc04b1554589058af45901c14f7SHA1: 502f2b62bb55f3b6f19d766a77ad7f85c1f78105ANALYSIS DATE: 2022-12-09T23:41:10ZTTPS: T1060, T1112, T1053, T1005,...
Protect Your Network with Zero-Day Threat Protection
Explore the world of zero-day threats and gain valuable insight into the importance of proactive detection and remediation. Learn how...
CommonSpirit confirms data breach impacts 623K patients
CommonSpirit Health confirmed that the October security breach resulted in the exposure of the personal data of 623,774 patients. In...
Pwn2Own Toronto 2022 Day 3: Participants earned nearly $1 million
On the third day of the Zero Day Initiative’s Pwn2Own Toronto 2022 hacking competition, participants earned more than $250,000. On the third...
Cisco discloses high-severity flaw impacting IP Phone 7800 and 8800 Series
Cisco disclosed a high-severity flaw in its IP phones that can be exploited to gain remote code execution and conduct...
Experts devised a technique to bypass web application firewalls (WAF) of several vendors
Claroty researchers devised a technique for bypassing the web application firewalls (WAF) of several vendors. Researchers at industrial and IoT...
Malware Analysis – evasion – a09c305eebab23581e6770a2112998c8
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: a09c305eebab23581e6770a2112998c8SHA1: 2c56dfddcd1199b1bd10d31fe87da99489704ae8ANALYSIS DATE: 2022-12-05T04:22:20ZTTPS: T1158, T1112, T1060, T1082, T1012, T1120 ScoreMeaningExample10Known badA...
