Cobalt Stike Beacon Detected – 91[.]238[.]181[.]247:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: May 2023
CISA: CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability
CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability CISA and FBI have released a...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and Partners Disclose Snake Malware Threat From Russian Cyber Actors
CISA and Partners Disclose Snake Malware Threat From Russian Cyber Actors Today, CISA and partners released a joint advisory for...
CISA: CISA Releases Fifteen Industrial Control Systems Advisories
CISA Releases Fifteen Industrial Control Systems Advisories CISA released fifteen Industrial Control Systems (ICS) advisories on May 11, 2023. These...
CISA: Mozilla Releases Security Advisories for Multiple Products
Mozilla Releases Security Advisories for Multiple Products Mozilla has released security advisories to address vulnerabilities in Thunderbird, Firefox and Firefox...
Cobalt Stike Beacon Detected – 117[.]78[.]20[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]81[.]243[.]125:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 216[.]83[.]45[.]170:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]60[.]167:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of May 1, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Indicator-Intelligence – Finds Related Domains And IPv4 Addresses To Do Threat Intelligence After Indicator-Intelligence Collects Static Files
Finds related domains and IPv4 addresses to do threat intelligence after Indicator-Intelligence collects static files. Done Related domains, IPs collect...
Malware Analysis – evasion – 9cb79abaac5dfa0af418aa8e34e24688
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9cb79abaac5dfa0af418aa8e34e24688SHA1: d51b34ca2dd411476407110d9a6d15028114db7aANALYSIS DATE: 2023-05-11T14:35:12ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – b09dcb40ee0b848c64e6610c2ce6b566
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b09dcb40ee0b848c64e6610c2ce6b566SHA1: 9a28f5ec22ef5ab85a3cee9d3504938abfe0bd9fANALYSIS DATE: 2023-05-11T14:35:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – d2cba8e8a254d92948b06f22408ad1d0
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d2cba8e8a254d92948b06f22408ad1d0SHA1: 4efbd2551033d9a7918ef4de6b6cab371e9ef9d2ANALYSIS DATE: 2023-05-11T14:36:18ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 6f3e67ffe0fae70074d1855a31de58b0
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 6f3e67ffe0fae70074d1855a31de58b0SHA1: 52b3a9ca753f16b7dd7f59a408b1b71cc5f36ae0ANALYSIS DATE: 2023-05-11T14:40:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 0c97ae9441aec18d7106515ea950cb59
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 0c97ae9441aec18d7106515ea950cb59SHA1: bead16b599744cb60ce3146855c00fce805e64c4ANALYSIS DATE: 2023-05-11T14:40:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 1ed220d5c3081b653e7d540bbee7823b
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 1ed220d5c3081b653e7d540bbee7823bSHA1: ffbe2b4c98cc1f97d1b95b78faf2674cd15540ceANALYSIS DATE: 2023-05-11T14:40:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – ff2cbce5dc50f2554f866a88b11c8e8f
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ff2cbce5dc50f2554f866a88b11c8e8fSHA1: 35e916d266be4ba8dc1d0e15915d68f63c978222ANALYSIS DATE: 2023-05-11T14:37:42ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – banker – 1678e81602a1666d602895bf7da04af4
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 1678e81602a1666d602895bf7da04af4SHA1: 37751af55695523307e6fa7aa077178596743dc1ANALYSIS DATE: 2023-05-11T14:40:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – banker – 7dfb7a568fad88e7e92da2ce1ac71483
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 7dfb7a568fad88e7e92da2ce1ac71483SHA1: 993224c563be93bd613cc3d9fca4e08986771803ANALYSIS DATE: 2023-05-11T14:40:57ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – wannacry – f269d924c3b0764eb87abf958d5f34cb
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, bootkit, discovery, persistence, ransomware, spyware, stealer, wormMD5: f269d924c3b0764eb87abf958d5f34cbSHA1: 99be8187cd59e822d0d655e8f0ca86f3962c5fd7ANALYSIS DATE: 2023-05-11T15:24:12ZTTPS: T1158, T1222, T1012, T1082,...
Malware Analysis – persistence – 036985f98b28f4f18b81702fad9ea559
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 036985f98b28f4f18b81702fad9ea559SHA1: 37c0bbdf96cf562cbad5b488d919bb7c723d2134ANALYSIS DATE: 2023-05-11T15:31:04ZTTPS: T1107, T1490, T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – b49fe89eedd01c5c4998902c6a988e2c
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, persistence, trojanMD5: b49fe89eedd01c5c4998902c6a988e2cSHA1: c0310946c0ad9346486a6c0eb33a8c73dfa63c01ANALYSIS DATE: 2023-05-11T15:55:20ZTTPS: T1012, T1082, T1057, T1004, T1112, T1088, T1089,...
