CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on May 9, 2023. These...
Month: May 2023
CISA: Microsoft Releases May 2023 Security Updates
Microsoft Releases May 2023 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Cobalt Stike Beacon Detected – 45[.]136[.]245[.]12:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]19[.]136[.]59:84
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 206[.]119[.]167[.]164:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]136[.]222[.]24:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]60[.]149[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]19[.]136[.]59:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 51[.]254[.]32[.]180:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]234[.]22[.]80:8098
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]44[.]152:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]143[.]108:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of April 24, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Domain-Protect – OWASP Domain Protect – Prevent Subdomain Takeover
OWASP Global AppSec Dublin - talk and demo Features scan Amazon Route53 across an AWS Organization for domain records vulnerable...
U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services
U.S. authorities have announced the seizure of 13 internet domains that offered DDoS-for-hire services to other criminal actors. The takedown...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Daily Threat Intelligence – May 09 – 2023
Unpatched security issues continue to be one of the top reasons enterprises suffer unauthorized intrusions. Lately, cybercriminals behind AndoryuBot botnet...
Malware Analysis – djvu – 712a61ae2ddf17f0e35543284b38ecb5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 712a61ae2ddf17f0e35543284b38ecb5SHA1: ec7f3c7187b940993ee0ee3a5e6ecdb5c2f46248ANALYSIS DATE: 2023-05-09T15:10:10ZTTPS: T1053, T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – f37ee31206675324ab26cebda09ce213
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: f37ee31206675324ab26cebda09ce213SHA1: be85524d255bd79ec89f94e8d5680a95ae609ea4ANALYSIS DATE: 2023-05-09T15:23:14ZTTPS: T1053, T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA...
Malware Analysis – smokeloader – 6fb66bb5fb50e8eaa954ef4c2e7d35fe
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6fb66bb5fb50e8eaa954ef4c2e7d35feSHA1: 725926939e8a895a37c0d2dad7637e115031816fANALYSIS DATE: 2023-05-09T15:50:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 00d4835bed9d6c2cc78aa335947264d0
Score: 1 MALWARE FAMILY: TAGS:MD5: 00d4835bed9d6c2cc78aa335947264d0SHA1: 4056a37dfe3b3465280e472ba5af54413ad68ac6ANALYSIS DATE: 2023-05-09T16:44:51ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – ransomware – c46070b5e113a7f5d9a58de14a11e430
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: c46070b5e113a7f5d9a58de14a11e430SHA1: 5007943bec2cf5310cfe8b8c49d6f55f79ad0e4cANALYSIS DATE: 2023-05-09T17:33:53ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 1df3b454fe1eb4550d029b5236b0f6e8
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 1df3b454fe1eb4550d029b5236b0f6e8SHA1: 7687ccc4f088d6a119c814a4bd66ffa903c72afbANALYSIS DATE: 2023-05-09T17:53:47ZTTPS: T1012, T1082, T1088, T1089, T1112, T1158,...
