Python Developers Beware: Clipper Malware Found in 450+ PyPI Packages!
Malicious actors have published more than 451 unique Python packages on the official Python Package Index (PyPI) repository in an...
Year: 2023
Chinese Hackers Targeting South American Diplomatic Entities with ShadowPad
Microsoft on Monday attributed a China-based cyber espionage actor to a set of attacks targeting diplomatic entities in South America....
A CISOs Practical Guide to Storage and Backup Ransomware Resiliency
One thing is clear. The "business value" of data continues to grow, making it an organization's primary piece of intellectual...
LockBit 3.0 Ransomware Victim: gruppobeltrame[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 1[.]117[.]117[.]162:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]111[.]16:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]46[.]192[.]64:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]58[.]197[.]94:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]159[.]43[.]58:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]153[.]117[.]9:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]240[.]207:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]30[.]17[.]40:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 65[.]49[.]237[.]57:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 176[.]113[.]115[.]44:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]77[.]18[.]249:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: Mozilla Releases Security Updates for Firefox 110 and Firefox ESR
Mozilla Releases Security Updates for Firefox 110 and Firefox ESR Mozilla has released security updates to address vulnerabilities in Firefox 110...
CISA: Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops
Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops Citrix has released security updates to address high-severity vulnerabilities...
Malware Analysis – smokeloader – 6d65abfbe9322286ee38a8c73820c6fa
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6d65abfbe9322286ee38a8c73820c6faSHA1: 5c512fd65dfe2cf81a146452e0b860d8eb9f0087ANALYSIS DATE: 2023-02-14T21:37:55ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 8b42ebfba0cb67a1164a15c6dae6fbef
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 8b42ebfba0cb67a1164a15c6dae6fbefSHA1: 5d4b97bbf2ca874b5924ec489c90a2e109ae2ad6ANALYSIS DATE: 2023-02-14T21:05:27ZTTPS: T1491, T1112, T1060, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – f1bc8d9c9770bb195851689a348b4168
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f1bc8d9c9770bb195851689a348b4168SHA1: a052c18d562e8ca161ecd02531faeecdfbcc8483ANALYSIS DATE: 2023-02-14T22:14:35ZTTPS: T1005, T1081, T1082, T1012,...
Malware Analysis – discovery – 55c131f621d3dcbfbdbd2531151a9600
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, ransomware, spyware, stealer, trojanMD5: 55c131f621d3dcbfbdbd2531151a9600SHA1: 23e6509c7955ba31874cb6d206991950b41a0969ANALYSIS DATE: 2023-02-14T22:14:13ZTTPS: T1490, T1012, T1082, T1112, T1031, T1089,...
Malware Analysis – djvu – 6e491867d96f8fd4344e2db60b6375d5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 6e491867d96f8fd4344e2db60b6375d5SHA1: 117dbfdb9c9e2f03f163fa2a2fa82df8e36ad341ANALYSIS DATE: 2023-02-14T22:40:21ZTTPS: T1222, T1012, T1082, T1005,...
Malware Analysis – dcrat – 57d5eb8631d54ac6876a9bd9043e36e4
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, evasion, infostealer, persistence, ransomware, rat,...
Malware Analysis – smokeloader – d6243fbefe3811ce3ab4235bac6b94e0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d6243fbefe3811ce3ab4235bac6b94e0SHA1: 884f1f967dfcd895d89068b6ae8fcb00939bd032ANALYSIS DATE: 2023-02-14T22:38:59ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
