Cobalt Stike Beacon Detected – 54[.]237[.]85[.]77:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2023
Cobalt Stike Beacon Detected – 1[.]13[.]82[.]101:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 195[.]123[.]241[.]169:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]227[.]255[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – xorist – 1887e84a16365a8de7522804b86dac25
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 1887e84a16365a8de7522804b86dac25SHA1: f2f6edd89efa30cf81ce77e7b5b6787ef5401824ANALYSIS DATE: 2023-02-21T11:47:28ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 55b1eeeb199b4210063c1bb7a77abb25
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 55b1eeeb199b4210063c1bb7a77abb25SHA1: 35f1491934e585fdf2df1a8276d8aa303c4594bdANALYSIS DATE: 2023-02-21T11:48:30ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA...
Malware Analysis – persistence – 8a17c0c50660056bce6a0292d302ebbe
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 8a17c0c50660056bce6a0292d302ebbeSHA1: 57a42db01fd1ad220012f3bcb824181b1b275ce6ANALYSIS DATE: 2023-02-21T11:53:18ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA malware family...
Malware Analysis – xorist – 80d330fd5fe1eb4229a0c0505cbad070
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 80d330fd5fe1eb4229a0c0505cbad070SHA1: 872a0059726d7354d0197ba209733e195b16623bANALYSIS DATE: 2023-02-21T11:53:20ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 0da42b36896f93a1a517f69c7fc19773
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 0da42b36896f93a1a517f69c7fc19773SHA1: 2730de840fec2cb457db0329bb5d53794c48db6eANALYSIS DATE: 2023-02-21T11:53:23ZTTPS: T1005, T1081, T1060, T1112, T1091 ScoreMeaningExample10Known...
Malware Analysis – xorist – cb255677750b445152be5798a1382e38
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: cb255677750b445152be5798a1382e38SHA1: 498f445a465d22ab2c3cee7cdd36487068135569ANALYSIS DATE: 2023-02-21T11:53:25ZTTPS: T1060, T1112, T1012, T1005, T1081 ScoreMeaningExample10Known...
Malware Analysis – persistence – 13973e33f8be47f2d8fdc3f492ae2a3d
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 13973e33f8be47f2d8fdc3f492ae2a3dSHA1: 08415d3285d4a535d2b604c2831d5f181ec402c5ANALYSIS DATE: 2023-02-21T11:53:27ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – persistence – ad69026f0cf984eaef62389e9b8ab266
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: ad69026f0cf984eaef62389e9b8ab266SHA1: 29d3d01ce6827de4298c7bea23acd2b74053991dANALYSIS DATE: 2023-02-21T11:53:28ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – persistence – 08daf2314b45178ae2f161597f271958
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 08daf2314b45178ae2f161597f271958SHA1: 5b762a27cda5e435b7e2c7de7734eef8a744c226ANALYSIS DATE: 2023-02-21T11:53:37ZTTPS: T1005, T1081, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – neshta – 7c68b6a3494c0f2d1197d8bb5d787494
Score: 10 MALWARE FAMILY: neshtaTAGS:family:neshta, family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 7c68b6a3494c0f2d1197d8bb5d787494SHA1: 15292934b45b68f367e3a868fb71a7fa2d8a77b9ANALYSIS DATE: 2023-02-21T11:53:29ZTTPS: T1112, T1042, T1005, T1081, T1082,...
Malware Analysis – xorist – 17918fb06d51823743387d4d7a1c7e33
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 17918fb06d51823743387d4d7a1c7e33SHA1: b5e38e285f983ed6b6065525f67b60c9e671517bANALYSIS DATE: 2023-02-21T11:53:31ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – xorist – 4a5757268b4092888d356752f9c08c69
Score: 10 MALWARE FAMILY: xoristTAGS:family:xorist, persistence, ransomware, spyware, stealer, upxMD5: 4a5757268b4092888d356752f9c08c69SHA1: fe609e6a0b803a777cacd32313ab06ce36491293ANALYSIS DATE: 2023-02-21T11:53:35ZTTPS: T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Fortinet FortiOS and FortiAuthenticator information disclosure | CVE-2022-22302
NAME__________Fortinet FortiOS and FortiAuthenticator information disclosurePlatforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiAuthenticator 6.0.0 Fortinet FortiOS 6.4.0 Fortinet FortiAuthenticator...
Online Pizza Ordering System SQL injection | CVE-2023-0910
NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...
Crafter Software CrafterCMS SQL injection | CVE-2023-26020
NAME__________Crafter Software CrafterCMS SQL injectionPlatforms Affected:Crafter Software CrafterCMS 3.1 Crafter Software CrafterCMS 4.0Risk Level:5.7Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Crafter Software CrafterCMS is vulnerable...
NetHack “C” (call) command denial of service | CVE-2023-24809
NAME__________NetHack "C" (call) command denial of servicePlatforms Affected:NetHack NetHack 3.6.2Risk Level:7.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NetHack is vulnerable to a denial of...
HPE OneView for VMware vCenter information disclosure | CVE-2022-37935
NAME__________HPE OneView for VMware vCenter information disclosurePlatforms Affected:HPE OneView for VMware vCenter 10.1 HPE OneView for VMware vCenter 10.0 HPE...
Online Pizza Ordering System SQL injection | CVE-2023-0906
NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote...
WP Coder plugin for WordPress SQL injection | CVE-2023-0895
NAME__________WP Coder plugin for WordPress SQL injectionPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________WP Coder plugin for WordPress is vulnerable to SQL injection....
Kliqqi-CMS admin/admin_update_module_widgets.php SQL injection | CVE-2020-21119
NAME__________Kliqqi-CMS admin/admin_update_module_widgets.php SQL injectionPlatforms Affected:Kliqqi-CMS Kliqqi-CMS 2.0.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Kliqqi-CMS is vulnerable to SQL injection. A remote authenticated attacker could...
