Cobalt Stike Beacon Detected – 23[.]94[.]240[.]207:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: February 2023
Cobalt Stike Beacon Detected – 103[.]30[.]17[.]40:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 65[.]49[.]237[.]57:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 176[.]113[.]115[.]44:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]77[.]18[.]249:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: Mozilla Releases Security Updates for Firefox 110 and Firefox ESR
Mozilla Releases Security Updates for Firefox 110 and Firefox ESR Mozilla has released security updates to address vulnerabilities in Firefox 110...
CISA: Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops
Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops Citrix has released security updates to address high-severity vulnerabilities...
Malware Analysis – smokeloader – 6d65abfbe9322286ee38a8c73820c6fa
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6d65abfbe9322286ee38a8c73820c6faSHA1: 5c512fd65dfe2cf81a146452e0b860d8eb9f0087ANALYSIS DATE: 2023-02-14T21:37:55ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 8b42ebfba0cb67a1164a15c6dae6fbef
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 8b42ebfba0cb67a1164a15c6dae6fbefSHA1: 5d4b97bbf2ca874b5924ec489c90a2e109ae2ad6ANALYSIS DATE: 2023-02-14T21:05:27ZTTPS: T1491, T1112, T1060, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – f1bc8d9c9770bb195851689a348b4168
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f1bc8d9c9770bb195851689a348b4168SHA1: a052c18d562e8ca161ecd02531faeecdfbcc8483ANALYSIS DATE: 2023-02-14T22:14:35ZTTPS: T1005, T1081, T1082, T1012,...
Malware Analysis – discovery – 55c131f621d3dcbfbdbd2531151a9600
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomware, spyware, stealer, trojanMD5: 55c131f621d3dcbfbdbd2531151a9600SHA1: 23e6509c7955ba31874cb6d206991950b41a0969ANALYSIS DATE: 2023-02-14T22:14:13ZTTPS: T1490, T1012, T1082, T1112, T1031, T1089,...
Malware Analysis – djvu – 6e491867d96f8fd4344e2db60b6375d5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 6e491867d96f8fd4344e2db60b6375d5SHA1: 117dbfdb9c9e2f03f163fa2a2fa82df8e36ad341ANALYSIS DATE: 2023-02-14T22:40:21ZTTPS: T1222, T1012, T1082, T1005,...
Malware Analysis – dcrat – 57d5eb8631d54ac6876a9bd9043e36e4
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, evasion, infostealer, persistence, ransomware, rat,...
Malware Analysis – smokeloader – d6243fbefe3811ce3ab4235bac6b94e0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d6243fbefe3811ce3ab4235bac6b94e0SHA1: 884f1f967dfcd895d89068b6ae8fcb00939bd032ANALYSIS DATE: 2023-02-14T22:38:59ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 7cfd887a307fa2b733ef74861120f04f
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 7cfd887a307fa2b733ef74861120f04fSHA1: dc42de12a6a69a0ab3fb9cadb4ba27baec75a69fANALYSIS DATE: 2023-02-14T22:43:48ZTTPS: T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
US-CERT Bulletin (SB23-045):Vulnerability Summary for the Week of February 6, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
CISA: Microsoft Releases February 2023 Security Updates
Microsoft Releases February 2023 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Malware Analysis – discovery – 2d237a07e4dc548f934ce1b90c39fde8
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 2d237a07e4dc548f934ce1b90c39fde8SHA1: c1a46122a35754d0a4d4ec327d8eda083e1c6bb1ANALYSIS DATE: 2023-02-14T15:12:36ZTTPS: T1012, T1120, T1082, T1057, T1060, T1112, T1018 ScoreMeaningExample10Known badA...
Malware Analysis – discovery – 5fb20cfeb83bf85d4fce53cfcf70496e
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 5fb20cfeb83bf85d4fce53cfcf70496eSHA1: 0e73641407a75a7ab1a8e8d9f69eb756f63e8af6ANALYSIS DATE: 2023-02-14T15:06:25ZTTPS: T1012, T1082, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 6b6cb1393aa3735b3894d18d8e86f6bf
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6b6cb1393aa3735b3894d18d8e86f6bfSHA1: 63e2a7953230a6f94606415c608896140bc19ca9ANALYSIS DATE: 2023-02-14T15:02:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 1c89cfd42c7405f07949d3df843a445e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...
Malware Analysis – djvu – 92fb02b01109479cb8e0d3cca65199b1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 92fb02b01109479cb8e0d3cca65199b1SHA1: e639b6880b9486bebfbf09e7d2826f87e9e9f000ANALYSIS DATE: 2023-02-14T16:25:42ZTTPS: T1053, T1005, T1081, T1060,...
Malware Analysis – persistence – 9880fae6551d1e9ee921f39751a6f3c0
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 9880fae6551d1e9ee921f39751a6f3c0SHA1: 30466ccd4ec7bcafb370510855da2cd631f74b7aANALYSIS DATE: 2023-02-14T16:09:20ZTTPS: T1012, T1120, T1082, T1107, T1490, T1060, T1112, T1005,...
