Cobalt Stike Beacon Detected – 45[.]61[.]186[.]9:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2023
SQLiDetector – Helps You To Detect SQL Injection “Error Based” By Sending Multiple Requests With 14 Payloads And Checking For 152 Regex Patterns For Different Databases
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests...
Cobalt Stike Beacon Detected – 43[.]159[.]43[.]58:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]215[.]85[.]196:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]232[.]21[.]201:9091
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]146[.]158[.]251:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Daily Vulnerability Trends: Mon Jan 23 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42864A race condition was addressed with improved state handling. This issue is...
Zurich – 756,737 breached accounts
HIBP In January 2023, the Japanese arm of Zurich insurance suffered a data breach that exposed 2.6M customer records with...
Cobalt Stike Beacon Detected – 52[.]60[.]155[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]29[.]82[.]40:8053
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 37[.]119[.]57[.]169:9002
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Popeye – A Kubernetes Cluster Resource Sanitizer
Popeye - A Kubernetes Cluster Sanitizer Popeye is a utility that scans live Kubernetes cluster and reports potential issues with...
Cobalt Stike Beacon Detected – 18[.]192[.]181[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 1584bcd7634fb887f9cfa961bc759828
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1584bcd7634fb887f9cfa961bc759828SHA1: 4e6832807c3303cfbde71c9a88f487a7cbe9b76eANALYSIS DATE: 2023-01-22T09:50:00ZTTPS: T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – 651066b4edb5d4aaab16a5083645d9db
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 651066b4edb5d4aaab16a5083645d9dbSHA1: 43039594af889953321a09b6579a0a26798e157dANALYSIS DATE: 2023-01-22T09:04:59ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – discovery – 5353103470722f4778485e5874392a0a
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploit, persistenceMD5: 5353103470722f4778485e5874392a0aSHA1: 596b5989ba88f6a3aa7b4bdd97c8367526291575ANALYSIS DATE: 2023-01-22T09:43:57ZTTPS: T1222, T1060, T1112, T1012, T1120, T1082, T1158 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 8481d406605697e84dacab3bb8f0644a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 8481d406605697e84dacab3bb8f0644aSHA1: ddd50a4c59f2324a8d5f8d890d0c0728e7062ad2ANALYSIS DATE: 2023-01-22T09:53:55ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – 243940be99aa38e3cc06b7f589064103
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 243940be99aa38e3cc06b7f589064103SHA1: f4b9ddd11cf143c1e1b21993172914e89a91418bANALYSIS DATE: 2023-01-22T11:42:54ZTTPS: T1060, T1112, T1005, T1081,...
Malware Analysis – djvu – e1e817e5b87307ca93a995eb612892f5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e1e817e5b87307ca93a995eb612892f5SHA1: cddcf161783f0de3b69d41e557c4c1f45cbb01c7ANALYSIS DATE: 2023-01-22T10:43:32ZTTPS: T1082, T1053, T1005, T1081,...
Malware Analysis – discovery – 8a9690b972368f4b037caabc85d2118f
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 8a9690b972368f4b037caabc85d2118fSHA1: d209481d5629089db3ba95662110ec3efbfcdf7bANALYSIS DATE: 2023-01-22T10:30:28ZTTPS: T1012, T1082, T1060, T1112, T1130 ScoreMeaningExample10Known badA malware family...
Malware Analysis – discovery – b7cdd21a7d0fabcd1ce4168972768842
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomware, spyware, stealerMD5: b7cdd21a7d0fabcd1ce4168972768842SHA1: 93f6c45b6d57c9ba9938e0466bbbb1c6d6d64620ANALYSIS DATE: 2023-01-22T10:41:49ZTTPS: T1082, T1060, T1112, T1012, T1120, T1005, T1081...
LockBit 3.0 Ransomware Victim: miguelmechanical[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ibb-business-team[.]de
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Daily Vulnerability Trends: Sun Jan 22 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-35690Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier)...
