Cobalt Stike Beacon Detected – 107[.]173[.]83[.]62:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: July 2023
Cobalt Stike Beacon Detected – 199[.]195[.]251[.]23:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of June 19, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Malware Analysis – smokeloader – 2db69fc356643c3709dbf3ee62ad26b7
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2db69fc356643c3709dbf3ee62ad26b7SHA1: f848734ca0b2943025fedaf9e85f5ebafdae465bANALYSIS DATE: 2023-07-02T17:08:18ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Akira Ransomware Victim: 4LEAF, Inc
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Cobalt Stike Beacon Detected – 23[.]226[.]55[.]66:2083
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]135[.]155[.]35:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]175[.]235:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]220[.]32[.]134:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]188[.]41:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 79[.]141[.]163[.]44:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]31[.]184:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]105[.]107[.]87:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]46[.]211[.]40:8082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]31[.]184:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]99[.]130[.]245:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]66[.]57[.]211:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
RubyGems uri gem denial of service | CVE-2023-36617
NAME__________RubyGems uri gem denial of servicePlatforms Affected:RubyGems uri gem 0.12.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________RubyGems uri gem is vulnerable to a...
Palantir Foundry workspace-server information disclosure | CVE-2023-30955
NAME__________Palantir Foundry workspace-server information disclosurePlatforms Affected:Palantir Foundry workspace-server 7.6.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Palantir Foundry workspace-server could allow a remote authenticated attacker...
jgraph/drawio denial of service | CVE-2023-3398
NAME__________jgraph/drawio denial of servicePlatforms Affected:jgraph drawio 18.1.3Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________jgraph/drawio is vulnerable to a denial of service, caused by...
Palantir Foundry Issues information disclosure | CVE-2023-30946
NAME__________Palantir Foundry Issues information disclosurePlatforms Affected:Palantir Foundry Issues 2.496.0Risk Level:3.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Palantir Foundry Issues could allow a remote authenticated attacker...
NOESCAPE Ransomware Victim: Cyril Johnston Hire
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Credit Team
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Karakurt Ransomware Victim: Pan Pacific Hotels Group
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
