Cobalt Stike Beacon Detected – 5[.]181[.]86[.]249:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: February 2023
Cobalt Stike Beacon Detected – 112[.]74[.]177[.]62:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Empire C2 Detected – 149[.]28[.]146[.]251:80
The Information provided at the time of posting was detected as "Empire C2". Depending on when you are viewing this...
Daily Vulnerability Trends: Fri Feb 10 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-24813Dompdf is an HTML to PDF converter written in php. Due to...
Malware Analysis – ransomware – 50f4469ad4b9bf352c5c9604ef913ccf
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 50f4469ad4b9bf352c5c9604ef913ccfSHA1: 5c82d5155c9151115346efd94e1b1da34cced32cANALYSIS DATE: 2023-02-10T05:42:47ZTTPS: T1005, T1081, T1107, T1490, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – discovery – e5f2fcd6f0327a18366243c8c657eb8d
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, upxMD5: e5f2fcd6f0327a18366243c8c657eb8dSHA1: 0d195362be5e95e4c6efc264c8027c0720d344f5ANALYSIS DATE: 2023-02-10T03:24:24ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 20d5e3daaa4f8ce2e83c91861f2a8ade
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 20d5e3daaa4f8ce2e83c91861f2a8adeSHA1: 4a555a39d41a0d10d35cbe5f78682a00210be6a0ANALYSIS DATE: 2023-02-10T05:55:27ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – chaos – 4cc6ec4d961a14c4fc4b45dfe939ca00
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: 4cc6ec4d961a14c4fc4b45dfe939ca00SHA1: 7a115dcc3ca91877b70de091b122259503d7109fANALYSIS DATE: 2023-02-10T05:37:03ZTTPS: T1490, T1059, T1107, T1005, T1081, T1082 ScoreMeaningExample10Known...
Weee – 1,117,405 breached accounts
HIBP In February 2023, data belonging to the Asian and Hispanic food delivery service Weee appeared on a popular hacking...
Play Ransomware Victim: M???????? S??
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 47[.]243[.]185[.]202:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]56:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]131[.]91:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 216[.]83[.]46[.]88:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]137[.]8[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]3[.]127[.]76:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]245[.]254[.]108:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 43194e64a0e20b8a582d56aa5bd36b86
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 43194e64a0e20b8a582d56aa5bd36b86SHA1: 2e7ac74639dee36c0f1c15bcdea45c8b89271c4eANALYSIS DATE: 2023-02-09T21:45:20ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – persistence – bf6105e0bc1d98f773c139c95e071311
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: bf6105e0bc1d98f773c139c95e071311SHA1: 38b12ff1618d1d7499d9b0a37d15a0d42d247895ANALYSIS DATE: 2023-02-09T22:39:19ZTTPS: T1082, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – persistence – 046fbae3ebc4d201d4e8eafcc67743b4
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 046fbae3ebc4d201d4e8eafcc67743b4SHA1: 3a77dabee37c375b2bbcca77c222c98fba423010ANALYSIS DATE: 2023-02-09T23:25:22ZTTPS: T1060, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
CISA: #StopRansomware – Ransomware Attacks on Critical Infrastructure Fund DPRK Espionage Activities
#StopRansomware - Ransomware Attacks on Critical Infrastructure Fund DPRK Espionage Activities CISA, the National Security Agency (NSA), the Federal Bureau...
C-99-Shell-PHP7 – PHP 7 And Safe-Build Update Of The Popular C-99 Variant Of PHP Shell
   C-99-Shell-PHP7 PHP 7 and safe-build Update of the popular C-99 variant of PHP Shell. c-99-shell.php v.2.0 (PHP...
Malware Analysis – fantom – 9d15a3b314600b4c08682b0202700ee7
Score: 10 MALWARE FAMILY: fantomTAGS:family:fantom, evasion, ransomware, spyware, stealer, upxMD5: 9d15a3b314600b4c08682b0202700ee7SHA1: 208e79cdb96328d5929248bb8a4dd622cf0684d1ANALYSIS DATE: 2023-02-09T15:12:39ZTTPS: T1012, T1082, T1005, T1081, T1102 ScoreMeaningExample10Known...
Malware Analysis – djvu – 6fda6069f74ac4ac29a6902c26c51dbe
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 6fda6069f74ac4ac29a6902c26c51dbeSHA1: a481c765969c8ea660483fda0d3e629687febf98ANALYSIS DATE: 2023-02-09T16:11:00ZTTPS: T1222, T1012, T1082, T1060,...
