Vice Society Ransomware Victim: Okanagan College
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: January 2023
Royal Ransomware Victim: municipality of Torre del Greco
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Cobalt Stike Beacon Detected – 81[.]69[.]96[.]149:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]175[.]220:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]15[.]78[.]80:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]96[.]129[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 51[.]254[.]53[.]1:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – persistence – fee7c379f3a555c5c821e872ec384a91
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: fee7c379f3a555c5c821e872ec384a91SHA1: 7346e2e29faddd63ae5c610c07acab46b2b1b176ANALYSIS DATE: 2023-01-30T21:04:09ZTTPS: T1107, T1490, T1012, T1120, T1082, T1091, T1060, T1112,...
Malware Analysis – djvu – 67ccd29a22cbe973099efa8b9067c212
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 67ccd29a22cbe973099efa8b9067c212SHA1: 87808670f220fac3cc61f175335a9c271240bb55ANALYSIS DATE: 2023-01-30T22:15:15ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – discovery – b4732b2a5f7f0b6239c9627e63c5420a
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomware, spyware, stealer, upxMD5: b4732b2a5f7f0b6239c9627e63c5420aSHA1: fb208f5b53a2e957455741c168cb55643956b98aANALYSIS DATE: 2023-01-30T22:06:33ZTTPS: T1012, T1120, T1082, T1222, T1060, T1112,...
Malware Analysis – ransomware – b0cb3082200dee5c41c86a936cb505d9
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b0cb3082200dee5c41c86a936cb505d9SHA1: 333e09728f41db59e074b0bd1dc5f2f8e75f9ae9ANALYSIS DATE: 2023-01-30T21:09:00ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – c55a56b6bd403cc0e37cfc8334c418ec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: c55a56b6bd403cc0e37cfc8334c418ecSHA1: 9e6d17af7a7d9e8b71709460043db01921d676baANALYSIS DATE: 2023-01-30T21:46:38ZTTPS:...
Malware Analysis – smokeloader – 2486d74f06a082f19c89a9fd1ff8f33c
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2486d74f06a082f19c89a9fd1ff8f33cSHA1: 462fa1e0c497739a65d651c1fb20b37b292d8330ANALYSIS DATE: 2023-01-30T23:01:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – raccoon – f093310a1184ce70410f1b5804a80e71
Score: 10 MALWARE FAMILY: raccoonTAGS:family:raccoon, botnet:8c3e4aa007fb2f2defacc1f952806f72, bootkit, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: f093310a1184ce70410f1b5804a80e71SHA1: 6e65c4750890b85dde47dff3c30be157f695a540ANALYSIS DATE: 2023-01-30T23:22:38ZTTPS: T1053, T1005,...
Malware Analysis – discovery – 05882ff7f159734468f66e60cb10f316
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 05882ff7f159734468f66e60cb10f316SHA1: ec0b1d3fd2a67a5f85e2a8b1e04d69f4362b6b4eANALYSIS DATE: 2023-01-30T23:48:44ZTTPS: T1082, T1057, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – ransomware – 794b00893a1b95ade9379710821ac1a4
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, upxMD5: 794b00893a1b95ade9379710821ac1a4SHA1: 85c7b2c351700457e3d6a21032dfd971ccb9b09dANALYSIS DATE: 2023-01-30T23:38:10ZTTPS: T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Vice Society Ransomware Victim: Scheppersinstituut Wetteren
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
DFShell – The Best Forwarded Shell
██████╗ ███████╗███████╗██╗ ██╗███████╗██╗ ██╗ ██╔══██╗██╔════╝██╔════╝██║ ██║███╔═══╝██║ ██║ ██║ ██║█████╗ ███████╗███████║█████╗ ██║ ██║ ██║ ██║██╔══╝ ╚════██║██╔══██║██╔══╝ ██║ ██║ ██████╔╝██║ ███████║██║ ██║███████╗████████╗███████╗╚═════╝...
Cobalt Stike Beacon Detected – 212[.]193[.]30[.]14:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 75[.]127[.]13[.]147:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 176[.]10[.]111[.]175:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]206[.]242:9990
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 210[.]209[.]123[.]100:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]175[.]156[.]42:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
