Cobalt Stike Beacon Detected – 5[.]188[.]86[.]194:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: February 2023
Cobalt Stike Beacon Detected – 84[.]32[.]131[.]91:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]46[.]177[.]219:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]185[.]216:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]156[.]146:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]111[.]120:7788
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]92[.]122[.]146:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]89[.]10[.]183:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 37[.]119[.]57[.]195:9002
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
HackerOne Bug Bounty Disclosure: ssrf-via-filter-bypass-due-to-lax-checking-on-ipsbyobitorasu
Programme HackerOne Nextcloud Nextcloud Submitted by obitorasu obitorasu Report SSRF via filter bypass due to lax checking on IPs Full...
HackerOne Bug Bounty Disclosure: double-forward-slash-breaks-server-side-restrictions-&-allows-access-to-prohibited-services-from-a-partner-accountbyashwarya
Programme HackerOne EXNESS EXNESS Submitted by ashwarya ashwarya Report Double forward slash breaks server-side restrictions & allows access to prohibited...
HackerOne Bug Bounty Disclosure: jitsi-desktop-client-rce-by-interacting-with-malicious-url-schemes-on-windowsbyex0dus-0x
Programme HackerOne 8x8 Bounty 8x8 Bounty Submitted by ex0dus-0x ex0dus-0x Report Jitsi Desktop Client RCE By Interacting with Malicious URL...
HackerOne Bug Bounty Disclosure: desktop-client-can-be-tricked-into-opening/executing-local-files-when-clicking-a-nc://open/-linkbylukasreschke
Programme HackerOne Nextcloud Nextcloud Submitted by lukasreschke lukasreschke Report Desktop client can be tricked into opening/executing local files when clicking...
HackerOne Bug Bounty Disclosure: hackerone-undisclosed-report-leak-via-poc-of-full-disclosure-on-hacktivitybysyjane
Programme HackerOne HackerOne HackerOne Submitted by syjane syjane Report HackerOne Undisclosed Report Leak via PoC of Full Disclosure on Hacktivity...
Malware Analysis – djvu – b83ea35b0ed8ecdc998e9fffeb694da4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: b83ea35b0ed8ecdc998e9fffeb694da4SHA1: 673a7442d490c9c6eabc3f43bc8299ff68f8106fANALYSIS DATE: 2023-02-10T15:35:44ZTTPS: T1082, T1012, T1060, T1112, T1222 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 670936165fe244e2905fbc7354f0ba35
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:546, backdoor, discovery, evasion, persistence, ransomware, stealer, themida, trojan, vmprotectMD5: 670936165fe244e2905fbc7354f0ba35SHA1: aaed184b2c9991afe8d1db5af006220ef6a0d3c1ANALYSIS DATE:...
Malware Analysis – djvu – 16200b113af6deaf8d20299b2ee6fdce
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 16200b113af6deaf8d20299b2ee6fdceSHA1: 00f2271b4d2bdafab93d0bc3d40c7a309507ce64ANALYSIS DATE: 2023-02-10T16:26:12ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – abd9de0a607b47e396cae4b372c69879
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: abd9de0a607b47e396cae4b372c69879SHA1: c55a2208cc2b3eabfb10bd499a6e88c41de05906ANALYSIS DATE: 2023-02-10T17:13:19ZTTPS: T1012,...
Malware Analysis – djvu – d014aa8d507c1461690db496c97cb16a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d014aa8d507c1461690db496c97cb16aSHA1: abaa15064b543bb6e4e0ece2743fe88864eef1c7ANALYSIS DATE: 2023-02-10T16:58:56ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – ca6745b53c57a5d2353781f173126a26
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, discovery, persistence, ransomware, trojan, vmprotectMD5: ca6745b53c57a5d2353781f173126a26SHA1: 648541dc24452c5363f5f6885a5f1b121760af2dANALYSIS DATE: 2023-02-10T16:40:27ZTTPS: T1012, T1120, T1082, T1060,...
Malware Analysis – adware – 11ff322997d98d02afe198c20b613ff3
Score: 8 MALWARE FAMILY: adwareTAGS:adware, discovery, exploit, persistence, ransomware, stealer, upxMD5: 11ff322997d98d02afe198c20b613ff3SHA1: 48e70395f187454bddc01484a6cbcf1c5f1753fcANALYSIS DATE: 2023-02-10T17:50:24ZTTPS: T1060, T1012, T1120, T1082, T1222,...
LockBit 3.0 Ransomware Victim: merlinpcbgroup[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 20[.]190[.]109[.]205:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 37[.]220[.]87[.]31:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
