Cobalt Stike Beacon Detected – 193[.]27[.]14[.]245:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: June 2023
US-CERT Vulnerability Summary for the Week of June 5, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Firefly – Black Box Fuzzer For Web Applications
Firefly is an advanced black-box fuzzer and not just a standard asset discovery tool. Firefly provides the advantage of testing...
Malware Analysis – – aa50eeda9cc63c13cebfa138b2bdd626
Score: 7 MALWARE FAMILY: TAGS:MD5: aa50eeda9cc63c13cebfa138b2bdd626SHA1: 87c6e1f7726adfe88337f20acd2ff793cd22e346ANALYSIS DATE: 2023-06-17T16:16:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – d0208c5f0aa7b445f4d3698824ccb935
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d0208c5f0aa7b445f4d3698824ccb935SHA1: 4bdb2ec4f176a5795eb03986d6383f6379139232ANALYSIS DATE: 2023-06-17T15:31:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 0c07a2e27d8ebbb10fd908f60a9a20d4
Score: 9 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomwareMD5: 0c07a2e27d8ebbb10fd908f60a9a20d4SHA1: 863d0d533e3b5d6987a3d955a8894f2f26113bf3ANALYSIS DATE: 2023-06-17T15:46:05ZTTPS: T1490, T1112, T1060, T1222, T1082, T1059, T1012, T1120,...
Malware Analysis – amadey – 2ed5ec819daa762f61d21a6ea04b9592
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:smokeloader, family:vidar, botnet:a129a8292a021d62796bfced1018aa1f, botnet:pub1, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 2ed5ec819daa762f61d21a6ea04b9592SHA1:...
Malware Analysis – djvu – e88948bf9115d1096f89bb4bf131bff0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:a129a8292a021d62796bfced1018aa1f, discovery, persistence, ransomware, spyware, stealerMD5: e88948bf9115d1096f89bb4bf131bff0SHA1: 8134e8606ca1e42e17f18a5715db6d09c2941d26ANALYSIS DATE: 2023-06-17T17:10:39ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – banker – a5188ba8047225ba1e3d5d83d442a930
Score: 9 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: a5188ba8047225ba1e3d5d83d442a930SHA1: 124b037ea265c9e13ccbe88695fa12a0c0648b03ANALYSIS DATE: 2023-06-17T17:14:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 14ea6ebc268d3c0b4009c8fe985ec39c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:a129a8292a021d62796bfced1018aa1f, discovery, persistence, ransomware, spyware, stealerMD5: 14ea6ebc268d3c0b4009c8fe985ec39cSHA1: 4d15b169d907fad53b1066a66595fdddc25bd0f6ANALYSIS DATE: 2023-06-17T16:51:02ZTTPS: T1005, T1081, T1012, T1082,...
LockBit 3.0 Ransomware Victim: cangas[.]gal
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 106[.]12[.]106[.]210:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 112[.]74[.]184[.]37:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]102[.]72:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]36[.]117[.]38:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 95[.]214[.]27[.]59:8877
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]30[.]252:8868
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]168[.]53[.]18:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 112[.]124[.]64[.]37:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]196[.]92[.]18:8082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]27[.]226[.]76:9090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]140[.]199[.]178:8086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
PHOENIX CONTACT FL MGUARD denial of service | CVE-2023-2673
NAME__________PHOENIX CONTACT FL MGUARD denial of servicePlatforms Affected:PHOENIX CONTACT FL MGUARD 2102 10.1.1 PHOENIX CONTACT FL MGUARD 4102 PCI 10.1.1...
Rating Widget Plugin for WordPress cross-site scripting | CVE-2023-23831
NAME__________Rating Widget Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Rating Widget Plugin for WordPress 3.1.9Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Rating Widget Plugin for...
