Brute Ratel C4 Detected – 52[.]194[.]178[.]19:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Month: February 2023
HackerOne Bug Bounty Disclosure: html-injection–(stored)bycriptex
Programme HackerOne Judge.me Judge.me Submitted by criptex criptex Report HTML INJECTION (STORED) Full Report A considerable amount of time and...
HackerOne Bug Bounty Disclosure: self-xss-due-to-image-url-can-be-eploited-via-xssjacking-techniques-in-review-emailbypenguinshelp
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Self-XSS due to image URL can be eploited via XSSJacking techniques...
HackerOne Bug Bounty Disclosure: improper-access-control-in-ali-express-importerbypenguinshelp
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Improper Access Control in Ali Express Importer Full Report A considerable...
HackerOne Bug Bounty Disclosure: stored-xss-in-public-profile-reviewsbyvj1naruto
Programme HackerOne Judge.me Judge.me Submitted by vj1naruto vj1naruto Report Stored XSS in Public Profile Reviews Full Report A considerable amount...
Malware Analysis – evasion – 0e6452fbace59927ee883faae2d82f52
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 0e6452fbace59927ee883faae2d82f52SHA1: 7c12fc18061ae904d9ac3b883e2cd8c2f4ea74c5ANALYSIS DATE: 2023-02-01T16:09:00ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – d8699aa29bad0a63e241a78d7fa7ed4d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d8699aa29bad0a63e241a78d7fa7ed4dSHA1: cb36472d80989e4b2c2996a180ba89099d561d1dANALYSIS DATE: 2023-02-01T15:02:05ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – 700c400a0fcb148eafe327b539bab0fc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 700c400a0fcb148eafe327b539bab0fcSHA1: 85d14338e6565a62c3b0deea58f321944751902eANALYSIS DATE: 2023-02-01T15:06:53ZTTPS:...
CISA: VMware Releases Security Update for VMware vRealize Operations
VMware Releases Security Update for VMware vRealize Operations VMware released a security update that addresses a cross-site request forgery bypass...
Malware Analysis – djvu – 13725d57e1ba5d0feaa5b49dad3c5c0d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 13725d57e1ba5d0feaa5b49dad3c5c0dSHA1: cffc84279bdd51c4a8c495cc0fea9645e60b6aefANALYSIS DATE: 2023-02-01T16:28:13ZTTPS:...
Malware Analysis – djvu – af5eb1234bcc794162c9f0f2fb4122be
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: af5eb1234bcc794162c9f0f2fb4122beSHA1: 0fea89cae611ed713452e6588faadf2cc6226e87ANALYSIS DATE: 2023-02-01T17:09:30ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – e401a15ea8319f97d7c841b36a7d360a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:19, botnet:@2023@new, backdoor, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: e401a15ea8319f97d7c841b36a7d360aSHA1:...
Malware Analysis – djvu – 0f35d14f2fd868c2235e2ef87a341a77
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 0f35d14f2fd868c2235e2ef87a341a77SHA1: 7913ad5f3754c46b2a510e2973093cd289fc3ea9ANALYSIS DATE: 2023-02-01T16:44:26ZTTPS: T1005, T1081, T1060, T1112,...
Royal Ransomware Victim: TK Elevator
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Vice Society Ransomware Victim: Guildford County School
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 51[.]254[.]53[.]1:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]173[.]143:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]208[.]73[.]11:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]186[.]121:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 5b82951e130e62cdd1ffe83c173c5577
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5b82951e130e62cdd1ffe83c173c5577SHA1: ea6d9f216a48d4d11ebb9026d225ba3a48cda3eeANALYSIS DATE: 2023-02-01T09:33:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – a237e7d2a7113dc1ed04f60cccbf77e6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: a237e7d2a7113dc1ed04f60cccbf77e6SHA1: 4e629739c773855aa15d702ea789809598844827ANALYSIS DATE: 2023-02-01T10:08:17ZTTPS: T1082, T1005, T1081, T1012,...
Malware Analysis – djvu – 35b59455f922242f7eb712b8a59d09e3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 35b59455f922242f7eb712b8a59d09e3SHA1: 56e0003a00e6f0d2f61a9624e5b21f517bae6c4dANALYSIS DATE: 2023-02-01T10:40:04ZTTPS:...
Malware Analysis – djvu – d9f343ef3d19bcb2d9cf34a026475f6f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: d9f343ef3d19bcb2d9cf34a026475f6fSHA1: d40edeccf97e8c623be22e282418c507a2d202c5ANALYSIS DATE: 2023-02-01T11:39:00ZTTPS:...
Malware Analysis – djvu – 87fdb817f23819d66aa76611694525cf
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 87fdb817f23819d66aa76611694525cfSHA1: 4b4d231ba899be8a4973a96fe86cd34bd79dd05fANALYSIS DATE: 2023-02-01T10:35:26ZTTPS: T1005, T1081, T1222, T1082,...
