Year: 2023

Cobalt Stike Beacon Detected – 47[.]93[.]235[.]240:8989

January 3, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 154[.]26[.]192[.]35:443

January 3, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 185[.]225[.]73[.]244:8080

January 3, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – ransomware – e231d644f5b878acd617f35994acd50d

January 3, 2023

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e231d644f5b878acd617f35994acd50dSHA1: 45bc0cded34342459efa7312a7a68d8788daff20ANALYSIS DATE: 2023-01-03T09:21:12ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 42e201d426895fc33fd4a940e63cc157

January 3, 2023

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 42e201d426895fc33fd4a940e63cc157SHA1: 6b401d175e45b8c7069172530ec4fc29bf9d9f0bANALYSIS DATE: 2023-01-03T09:13:57ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – lockbit – 38745539b71cf201bb502437f891d799

January 3, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, ransomwareMD5: 38745539b71cf201bb502437f891d799SHA1: f2a72bee623659d3ba16b365024020868246d901ANALYSIS DATE: 2023-01-03T09:33:37ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – amadey – e7d749dbfe2e17f6ea16091b533d6dac

January 3, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: e7d749dbfe2e17f6ea16091b533d6dacSHA1: ba371eee10e094cf22edf271666774c9cfe81752ANALYSIS...

Malware Analysis – djvu – f0b72f16fd3e5a20da00306c8b2620c2

January 3, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f0b72f16fd3e5a20da00306c8b2620c2SHA1: 371346d429bb2383740d3a578f9f6a5fa174ff3cANALYSIS DATE: 2023-01-03T09:52:50ZTTPS: T1082, T1012, T1060, T1112,...

Malware Analysis – amadey – 9db4252cc21a8028173bd4891b236c84

January 3, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojan,...

Malware Analysis – amadey – 909ea795bd8c690938aa1ea5b8494614

January 3, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 909ea795bd8c690938aa1ea5b8494614SHA1: f10c1783d0d1e65885ecf99f8a108f9b8a43f4c7ANALYSIS...

Malware Analysis – djvu – 73b0edba2950305182437e022ac81eb6

January 3, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 73b0edba2950305182437e022ac81eb6SHA1: 7a22d5919da5d0f07fbc50d100b2b10a1c0b7398ANALYSIS DATE: 2023-01-03T10:55:15ZTTPS: T1005, T1081, T1082, T1012,...

Daily Vulnerability Trends: Tue Jan 03 2023

January 3, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27518Unauthenticated remote arbitrary code executionCVE-2022-47949The Nintendo NetworkBuffer class, as used in Animal...

Malware Analysis – smokeloader – d01a7d120480d9819cfbaf680a7a87c9

January 3, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d01a7d120480d9819cfbaf680a7a87c9SHA1: 51eff6b124419ac88ff6c7580c7c82d2cc25808bANALYSIS DATE: 2023-01-03T03:26:28ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 7db8381bc4b59273ddfb708d9321f33a

January 3, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 7db8381bc4b59273ddfb708d9321f33aSHA1: 7a6c38a107c6536f3e46147db35349238ca0bd66ANALYSIS DATE: 2023-01-03T04:35:23ZTTPS: T1060, T1112, T1082, T1012,...

Malware Analysis – djvu – 221439c77c4ebe920e2595fbd4a32069

January 3, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 221439c77c4ebe920e2595fbd4a32069SHA1: fd3ec3405a6c9116e0a4b16f4e5b4e7886f48d41ANALYSIS DATE: 2023-01-03T04:15:00ZTTPS: T1053, T1130, T1112, T1222, T1060,...

Malware Analysis – djvu – c04760e74be54ca3cadb73334a12487b

January 3, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: c04760e74be54ca3cadb73334a12487bSHA1: 36b66864b9302dcadca19d90d934654f579ff49bANALYSIS DATE: 2023-01-03T05:20:54ZTTPS: T1130, T1112, T1060, T1222, T1082...

Malware Analysis – bootkit – 2dbb19618eb730077e80a26464602444

January 3, 2023

Score: 10 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, exploit, persistence, trojanMD5: 2dbb19618eb730077e80a26464602444SHA1: f3b9459d2b8a37564b7c3c362eaad80eb52ce51cANALYSIS DATE: 2023-01-03T05:28:27ZTTPS: T1067, T1222, T1082, T1088, T1089, T1112...

Malware Analysis – ransomware – 9608c8b6c8d80fdc67b99edd3c53d3d2

January 3, 2023

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 9608c8b6c8d80fdc67b99edd3c53d3d2SHA1: 37b11d3d7b7a1d18daafd6c63b33526860aaefe6ANALYSIS DATE: 2023-01-03T05:30:57ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – amadey – 70bbc9e9b5b79997153143323248b548

January 3, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 70bbc9e9b5b79997153143323248b548SHA1: 3dee9ea796f66942807f0f947f3ed2294a1d02fcANALYSIS...

Year: 2023

Cobalt Stike Beacon Detected – 47[.]93[.]235[.]240:8989

Cobalt Stike Beacon Detected – 154[.]26[.]192[.]35:443

Cobalt Stike Beacon Detected – 185[.]225[.]73[.]244:8080

Malware Analysis – ransomware – e231d644f5b878acd617f35994acd50d

Malware Analysis – ransomware – 42e201d426895fc33fd4a940e63cc157

Malware Analysis – lockbit – 38745539b71cf201bb502437f891d799

Malware Analysis – amadey – e7d749dbfe2e17f6ea16091b533d6dac

Malware Analysis – djvu – f0b72f16fd3e5a20da00306c8b2620c2

Malware Analysis – amadey – 9db4252cc21a8028173bd4891b236c84

Malware Analysis – amadey – 909ea795bd8c690938aa1ea5b8494614

Malware Analysis – djvu – 73b0edba2950305182437e022ac81eb6

Daily Vulnerability Trends: Tue Jan 03 2023

Malware Analysis – smokeloader – d01a7d120480d9819cfbaf680a7a87c9

Malware Analysis – djvu – 7db8381bc4b59273ddfb708d9321f33a

Malware Analysis – djvu – 221439c77c4ebe920e2595fbd4a32069

Malware Analysis – djvu – c04760e74be54ca3cadb73334a12487b

Malware Analysis – bootkit – 2dbb19618eb730077e80a26464602444

Malware Analysis – ransomware – 9608c8b6c8d80fdc67b99edd3c53d3d2

Malware Analysis – amadey – 70bbc9e9b5b79997153143323248b548

Cobalt Stike Beacon Detected – 139[.]180[.]208[.]67:443

Cobalt Stike Beacon Detected – 106[.]75[.]247[.]178:8443

Cobalt Stike Beacon Detected – 93[.]95[.]229[.]225:443

Cobalt Stike Beacon Detected – 47[.]107[.]122[.]86:443

Cobalt Stike Beacon Detected – 182[.]254[.]240[.]188:60001

Mirai Botnet Leverages Zero-Day Exploits in Routers and Smart Devices

Casio Security Breach: Employee and Customer Data Leaked in Ransomware Attack

Remote Access Tools Used by Fraudsters Claiming to be Government Officials

Microsoft 365 Phishing Scam Targets PayPal Users – What You Need to Know

Cyber Trust Mark for IoT Devices: Enhancing Security Standards

You may have missed