Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:515
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2023
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:8037
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:4063
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]108[.]55:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 195[.]211[.]96[.]116:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:25001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 207[.]180[.]248[.]202:5858
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 140[.]143[.]232[.]178:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – ed00ed73b3e0d9b4e74c2c94ff3cf9b1
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ed00ed73b3e0d9b4e74c2c94ff3cf9b1SHA1: ff68bb1dc9651d62d50b3fac245c66b1b91cce40ANALYSIS DATE: 2023-01-05T21:22:28ZTTPS: T1107, T1490, T1082, T1018, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:9898
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 68[.]183[.]252[.]67:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:631
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]79[.]64[.]164:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – f6b293eed267661df94b3d0afd7a2f82
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f6b293eed267661df94b3d0afd7a2f82SHA1: 9ba3088a0efd9c42cb5f7e22742c43d7793589f9ANALYSIS DATE: 2023-01-05T21:55:47ZTTPS: T1005, T1081, T1053, T1060,...
Malware Analysis – amadey – 8342e41277305e462526d301aa1196ff
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 8342e41277305e462526d301aa1196ffSHA1: ad04bf12f10dbc4ae8f4b52d19995d29e3fd378cANALYSIS DATE:...
Malware Analysis – persistence – b5981ed3aff8746b058a72eadf6c00d4
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: b5981ed3aff8746b058a72eadf6c00d4SHA1: 4404ec52008ba98f6c1c4f21f72a7e31765eaa7dANALYSIS DATE: 2023-01-05T21:22:35ZTTPS: T1060, T1112, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – discovery – d2b48aa2bd4b6d6c16261cecda611770
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: d2b48aa2bd4b6d6c16261cecda611770SHA1: e4cb81b8725ba0db1dd98d5f4d4d2c2350dd7d59ANALYSIS DATE: 2023-01-05T21:37:15ZTTPS: T1012, T1082, T1057 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – discovery – 6fb56107fdf1eb1fd5358d34a5ffd4c4
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 6fb56107fdf1eb1fd5358d34a5ffd4c4SHA1: 1b4ce4480b140bb0f4d26bb2bfae3a6db58562e4ANALYSIS DATE: 2023-01-05T22:12:50ZTTPS: T1012, T1082, T1057 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – evasion – ce5451bc9732cf76ae643f57a6e4540a
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ce5451bc9732cf76ae643f57a6e4540aSHA1: 6c340c782d97bd4f678d13e547d1494c41141c5aANALYSIS DATE: 2023-01-05T22:54:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – e1346d650519a0c9124f2decc2198f01
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e1346d650519a0c9124f2decc2198f01SHA1: 2ca0a7c3055e70be006d9e2b2a363a5380e9907dANALYSIS DATE: 2023-01-05T23:55:15ZTTPS: T1053, T1082, T1222, T1012,...
Malware Analysis – evasion – 3312d268deb49f402ebaa0bed040832a
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 3312d268deb49f402ebaa0bed040832aSHA1: 3a78ea2fa3d623faf8b97e1bf3c3abf2bc762936ANALYSIS DATE: 2023-01-05T22:55:12ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
HackerOne Bug Bounty Disclosure: cve-2022-40127:-rce-in-apache-airflow-<2-4-0-bash-examplebyleixiao
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by leixiao leixiao Report CVE-2022-40127: RCE in Apache Airflow
Malware Analysis – djvu – 1a31a6e01c28f2308a8728981a0ba917
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1a31a6e01c28f2308a8728981a0ba917SHA1: e573fac78ffb94a69d704e62a4bc48313d0036f8ANALYSIS DATE: 2023-01-05T15:54:05ZTTPS: T1060, T1112, T1005, T1081,...
Malware Analysis – evasion – b53e20cecff1c0884afea69e403b788a
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b53e20cecff1c0884afea69e403b788aSHA1: db36d6788b823b2fc8c13b597633928150198effANALYSIS DATE: 2023-01-05T16:39:18ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
