CISA: Abuse of the Service Location Protocol May Lead to DoS Attacks
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
Month: May 2023
CISA: Oracle Releases Security Updates
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
CISA: CISA Releases Two SBOM Documents
CISA Releases Two SBOM Documents Today, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA: VMware Releases Security Update for Aria Operations for Logs
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
CISA: CISA Releases One Industrial Control Systems Medical Advisory
CISA Releases One Industrial Control Systems Medical Advisory CISA released one Industrial Control Systems Medical (ICS) medical advisory on April...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on April 25, 2023. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans
CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans The Federal Communications Commission (FCC) maintains a Covered...
CISA: CISA Requests for Comment on Secure Software Self-Attestation Form
CISA Requests for Comment on Secure Software Self-Attestation Form CISA has issued requests for comment on the Secure Software Self-Attestation...
US-CERT Vulnerability Summary for the Week of April 17, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
CISA: CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans
CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans The Federal Communications Commission (FCC) maintains a Covered...
Royal Ransomware Victim: EdisonLearning
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – smokeloader – f6abcec4ffdfa171bd618bb207b298a6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f6abcec4ffdfa171bd618bb207b298a6SHA1: 83fc902a05c46c4961ded1a7e85f755f2158e2b6ANALYSIS DATE: 2023-05-01T15:03:17ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 6b1b7ecb23d66f38315da2f0cdc7057f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: 6b1b7ecb23d66f38315da2f0cdc7057fSHA1: afe82e8aac191537565b962ab842f691af4f08c0ANALYSIS DATE: 2023-05-01T15:03:16ZTTPS: T1130, T1112, T1053, T1060, T1222,...
Malware Analysis – djvu – 9d7bdf0d62714ee2eea6aab9d2ee58bd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: 9d7bdf0d62714ee2eea6aab9d2ee58bdSHA1: f15e7703b0f867d6a6b6c52f6a7536f6576449ebANALYSIS DATE: 2023-05-01T15:01:17ZTTPS: T1053, T1130, T1112, T1060, T1222,...
Malware Analysis – smokeloader – 9b1591aa407aa0b572e4767f50b93f4e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9b1591aa407aa0b572e4767f50b93f4eSHA1: 17117aa1f10a0b3317ca4a21d80bf1dc5ce6f655ANALYSIS DATE: 2023-05-01T14:59:00ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 214d7ffb57660b3c12a8885b61d834b4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: 214d7ffb57660b3c12a8885b61d834b4SHA1: 99b8a03835cfc05f5570d8498ff10bf2a3190a4dANALYSIS DATE: 2023-05-01T15:04:03ZTTPS: T1130, T1112, T1060, T1222, T1082,...
Malware Analysis – djvu – f08edf8ca763966b609759256ce3f792
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: f08edf8ca763966b609759256ce3f792SHA1: 25764bb37ecbbfcbdd1f833fb534ca5289f224baANALYSIS DATE: 2023-05-01T15:07:18ZTTPS: T1060, T1112, T1082, T1053, T1130,...
Malware Analysis – djvu – 41b9d70907bbf3d31874a26b2a36a1d2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: 41b9d70907bbf3d31874a26b2a36a1d2SHA1: 1a8843e385b4569511fb51207ace79575993a8afANALYSIS DATE: 2023-05-01T15:03:52ZTTPS: T1060, T1112, T1222, T1082, T1130,...
Malware Analysis – djvu – cc4c818c90433a7440330b6a64889d53
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: cc4c818c90433a7440330b6a64889d53SHA1: da919501a70b927699b598624380303e0219067cANALYSIS DATE: 2023-05-01T15:03:23ZTTPS: T1130, T1112, T1053, T1060, T1222,...
Malware Analysis – smokeloader – e3645d38b565b7971909110cb457f6b5
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e3645d38b565b7971909110cb457f6b5SHA1: aa83d763f0aa9189ec5f27ec42d02b25a15aa46bANALYSIS DATE: 2023-05-01T15:09:31ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 468699a932a8f170e534f4dbc024c959
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 468699a932a8f170e534f4dbc024c959SHA1: 34994fbcf70f9f13d156545243b1dfc2904ccc1fANALYSIS DATE: 2023-05-01T15:07:32ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – c25323a2ab8f459ab605321827845d01
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, stealerMD5: c25323a2ab8f459ab605321827845d01SHA1: 05b1d7ac739818232d6dcd2c64839dd31dc19b7bANALYSIS DATE: 2023-05-01T15:08:28ZTTPS: T1053, T1130, T1112, T1060, T1222,...
