CISA: CISA and Partners Release Cybersecurity Best Practices for Smart Cities
CISA and Partners Release Cybersecurity Best Practices for Smart Cities Today, CISA, NSA, FBI, NCSC-UK(link is external), ACSC(link is external),...
Month: April 2023
CISA: CISA to Continue and Enhance U.K.’s Logging Made Easy Tool
CISA to Continue and Enhance U.K.’s Logging Made Easy Tool CISA has announced plans to continue and enhance the Logging...
CISA: CISA Releases Malware Analysis Report on ICONICSTEALER
CISA Releases Malware Analysis Report on ICONICSTEALER CISA has released a new Malware Analysis Report (MAR) on an infostealer known...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on April 20, 2023. These...
CISA: Oracle Releases Security Updates
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
CISA: CISA Releases Two SBOM Documents
CISA Releases Two SBOM Documents Today, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM...
CISA: VMware Releases Security Update for Aria Operations for Logs
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security updates for vulnerabilities affecting Industrial Network Director (IND), Modeling...
CISA: Drupal Releases Security Advisory to Address Vulnerability in Drupal Core
Drupal Releases Security Advisory to Address Vulnerability in Drupal Core Drupal has released a security advisory to address an access...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
US-CERT Vulnerability Summary for the Week of April 10, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Nuclearpond – A Utility Leveraging Nuclei To Perform Internet Wide Scans For The Cost Of A Cup Of Coffee
Nuclear Pond is used to leverage Nuclei in the cloud with unremarkable speed, flexibility, and perform internet wide scans for...
KubeStalk – Discovers Kubernetes And Related Infrastructure Based Attack Surface From A Black-Box Perspective
KubeStalk is a tool to discover Kubernetes and related infrastructure based attack surface from a black-box perspective. This tool...
Royal Ransomware Victim: Lake Dallas Independent School District
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: MW Components
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – evasion – 8effcc3b16c124f3ba46fe8e86947105
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 8effcc3b16c124f3ba46fe8e86947105SHA1: d6b4f76d9bfbaae0fc944adb8cb9dd8f487050efANALYSIS DATE: 2023-04-24T14:32:46ZTTPS: T1012, T1082, T1112, T1060, T1158, T1491, T1120 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 18d171bc6fea9f638c4d76698b2b7d7f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 18d171bc6fea9f638c4d76698b2b7d7fSHA1: ab1aa609f0395ab1a410a8aeef94d9fc6f9b0fb6ANALYSIS DATE: 2023-04-24T15:22:21ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – evasion – b209c6502e2fecd11fbdeb4fe602e90a
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b209c6502e2fecd11fbdeb4fe602e90aSHA1: 5abd3b562aa38db2a1f14ec0997a5e9d6fa4fc9eANALYSIS DATE: 2023-04-24T17:23:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 9d416753c2a076fa65105a7d34fbe1cb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 9d416753c2a076fa65105a7d34fbe1cbSHA1: 52e01796a7c5f0492d832f86708d4bfab0f2b690ANALYSIS DATE: 2023-04-24T15:43:58ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – amadey – ca89840f1259ebfe7a0e945c15ed79e5
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:raccoon, family:rhadamanthys, family:smokeloader, family:vidar, botnet:5c24dc0e9726fcc756a18038ae4e0e67, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:fc8427198f843d72c1aa8a66db1a98f3, botnet:pub1, backdoor, collection, discovery, evasion, persistence, ransomware,...
Malware Analysis – amadey – 0e5768e5106ad5956530ada9cbd08647
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:raccoon, family:rhadamanthys, family:smokeloader, family:vidar, botnet:5c24dc0e9726fcc756a18038ae4e0e67, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:fc8427198f843d72c1aa8a66db1a98f3, botnet:pub1, backdoor, collection, discovery, evasion, persistence, ransomware,...
Malware Analysis – djvu – 9e152141b4c83bd73477b543860668df
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 9e152141b4c83bd73477b543860668dfSHA1: 841b2caff78d9dd1e8ad6b6a1493c9892d698dceANALYSIS DATE: 2023-04-24T17:32:45ZTTPS: T1082, T1012, T1005, T1081,...
Malware Analysis – amadey – 6f067e24ed07adc6b424ac9a0e7f5a61
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:raccoon, family:rhadamanthys, family:smokeloader, family:vidar, botnet:5c24dc0e9726fcc756a18038ae4e0e67, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:fc8427198f843d72c1aa8a66db1a98f3, botnet:pub1, backdoor, collection, discovery, evasion, persistence, ransomware,...
Malware Analysis – djvu – 8729348bb91d4712cde74e6ae4949bbe
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 8729348bb91d4712cde74e6ae4949bbeSHA1: 996a94a902d668107532ba251f8224d6b7225ddcANALYSIS DATE: 2023-04-24T17:25:53ZTTPS: T1012, T1082, T1053, T1005,...