PureCrypter Malware Targets Government Entities in Asia-Pacific and North America
Government entities in Asia-Pacific and North America are being targeted by an unknown threat actor with an off-the-shelf malware downloader...
Month: February 2023
How to Tackle the Top SaaS Challenges of 2023
Are you prepared to tackle the top SaaS challenges of 2023? With high-profile data breaches affecting major companies like Nissan...
PlugX Trojan Disguised as Legitimate Windows Debugger Tool in Latest Attacks
The PlugX remote access trojan has been observed masquerading as an open source Windows debugger tool called x64dbg in an...
ChromeLoader Malware Targeting Gamers via Fake Nintendo and Steam Game Hacks
A new ChromeLoader malware campaign has been observed being distributed via virtual hard disk (VHD) files, marking a deviation from...
Malware Analysis – smokeloader – 0791d4fdb3ab94c236568ac890a16a5a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0791d4fdb3ab94c236568ac890a16a5aSHA1: 3ae812bc7977181c578867dbe5a43a4b84ceead0ANALYSIS DATE: 2023-02-27T09:06:13ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 52c84c3173a4681cce7fc7bc5d8042db
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 52c84c3173a4681cce7fc7bc5d8042dbSHA1: d63990866ef6a285a6a18c2c3527ee547934ca5aANALYSIS DATE: 2023-02-27T09:07:19ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – troldesh – 63210f8f1dde6c40a7f3643ccf0ff313
Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, persistence, ransomware, trojan, upxMD5: 63210f8f1dde6c40a7f3643ccf0ff313SHA1: 57edd72391d710d71bead504d44389d0462ccec9ANALYSIS DATE: 2023-02-27T09:11:05ZTTPS: T1060, T1112, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – smokeloader – b3f4fcfb20dc2d65bc7355f744cc471a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: b3f4fcfb20dc2d65bc7355f744cc471aSHA1: 9768b327aa6be677923550e9d949b0606eb3f116ANALYSIS DATE: 2023-02-27T09:07:20ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 10c1d309a43c0ae8c867d445f0983a7c
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 10c1d309a43c0ae8c867d445f0983a7cSHA1: 7e81c65fa44afac85129806815dc422e42e7f421ANALYSIS DATE: 2023-02-27T09:07:20ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – b7d558b62705bb9da3e9154d81eddc6c
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: b7d558b62705bb9da3e9154d81eddc6cSHA1: a54d91fb7224a9bd32b13d13a1bc259f631decfbANALYSIS DATE: 2023-02-27T09:07:20ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 497f80075a5ef00096030f57892b04f7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 497f80075a5ef00096030f57892b04f7SHA1: cbad6c33c852e1ccee944854e9d3d80e49b585a5ANALYSIS DATE: 2023-02-27T10:23:25ZTTPS: T1053, T1005, T1081, T1012, T1082,...
Malware Analysis – ransomware – 9aed6f35603d5b43be90947cb901646d
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 9aed6f35603d5b43be90947cb901646dSHA1: 4c5fcdf8e12c51412448a0eab83c9e70d8d85802ANALYSIS DATE: 2023-02-27T09:27:49ZTTPS: T1082, T1107, T1490, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 5c99ee62a7e7bdd30257f2af5af760eb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 5c99ee62a7e7bdd30257f2af5af760ebSHA1: 4273c64a6dd3cdc41689d3fe84063a64b3444fc7ANALYSIS DATE: 2023-02-27T10:02:29ZTTPS: T1060, T1112, T1012, T1082, T1005,...
Malware Analysis – djvu – ef701a28f6a0f6c47bbeb9075bfdbb17
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: ef701a28f6a0f6c47bbeb9075bfdbb17SHA1: d8d7540d7aa77ab65a808114ab968245901fc6b0ANALYSIS DATE: 2023-02-27T10:05:24ZTTPS: T1012, T1120,...
Cobalt Stike Beacon Detected – 112[.]74[.]184[.]37:9988
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]254[.]87:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]136[.]218[.]157:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]223[.]190[.]172:3333
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 9bef94cc928804cc3d23a4ae8293215e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 9bef94cc928804cc3d23a4ae8293215eSHA1: de9c936943f6290228972dd27a663887c0fd138bANALYSIS DATE: 2023-02-27T10:54:39ZTTPS: T1012, T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – 765a4e60824b26944e349fd5c5d25773
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 765a4e60824b26944e349fd5c5d25773SHA1: 69d86ac73275a3bbf24afcf2d1c113c196eb1a08ANALYSIS DATE: 2023-02-27T10:41:59ZTTPS: T1012, T1082, T1222, T1053, T1005,...
Malware Analysis – djvu – a76852e5eb1e18a990ff1d0a6e34d830
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a76852e5eb1e18a990ff1d0a6e34d830SHA1: aca915229ecc63c5fbe37e3b024ab2a40d40abb5ANALYSIS DATE: 2023-02-27T11:24:55ZTTPS: T1060, T1112, T1012, T1005, T1081,...
Malware Analysis – djvu – d4dde394647d6d74a212f2abfc38d785
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d4dde394647d6d74a212f2abfc38d785SHA1: b0f6ef1a54339f048af1ebf29691e471c926cd3cANALYSIS DATE: 2023-02-27T10:52:10ZTTPS: T1053, T1005, T1081, T1060, T1112,...
Cobalt Stike Beacon Detected – 121[.]4[.]32[.]171:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]234[.]72[.]195:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
