Cl0p Ransomware Victim: NEWEUROPEANOFFSHORE[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Year: 2023
Cl0p Ransomware Victim: HOMEWOODHEALTH[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cl0p Ransomware Victim: INVESTQUEBEC[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Kali Linux 2023.1 – Penetration Testing and Ethical Hacking Linux Distribution
Time for another Kali Linux release! – Kali Linux 2023.1. This release has various impressive updates. he changelog summary since...
CertWatcher – A Tool For Capture And Tracking Certificate Transparency Logs, Using YAML Templates Based DSL
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates. The tool helps to detect and...
GPT_Vuln-analyzer – Uses ChatGPT API And Python-Nmap Module To Use The GPT3 Model To Create Vulnerability Reports Based On Nmap Scan Data
This is a Proof Of Concept application that demostrates how AI can be used to generate accurate results for vulnerability...
Malware Analysis – amadey – 0467ee15f3d5c79b87072154404b778a
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:redline, family:smokeloader, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, botnet:fronx2, botnet:pub1, botnet:sprg, backdoor, clipper, discovery, infostealer, persistence, ransomware,...
Malware Analysis – – dbbc0d7f0ac1d363548616251b0c8f6c
Score: 3 MALWARE FAMILY: TAGS:MD5: dbbc0d7f0ac1d363548616251b0c8f6cSHA1: a6d28f3d947cf26f88b20ac032ea7e3b754fe508ANALYSIS DATE: 2023-03-16T17:23:34ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – a6ffaf58c5eecf62f76e64c7ce96579f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, backdoor, discovery, ransomware, trojanMD5: a6ffaf58c5eecf62f76e64c7ce96579fSHA1: 2f0f6319c08605806a6df43b63b40fec14b7758bANALYSIS DATE: 2023-03-16T16:42:16ZTTPS: T1222, T1053, T1012, T1120,...
Malware Analysis – djvu – 4b8dcfeef9843f465a21b69037359414
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 4b8dcfeef9843f465a21b69037359414SHA1: cedd04d7d3f268b1486ee6096f2fdcc22e20d735ANALYSIS DATE: 2023-03-16T16:45:21ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 35063fae0b2c07ddb96fddb698593b45
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 35063fae0b2c07ddb96fddb698593b45SHA1: 02051cec2bdcb1634fb9ef431eead11261a633c6ANALYSIS DATE: 2023-03-16T16:20:58ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – discovery – 4cfa58c379694cc4d4a6af507d1ed47b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 4cfa58c379694cc4d4a6af507d1ed47bSHA1: f15cbf357919c9f998bbac5f1e32f4883d7a9d43ANALYSIS DATE: 2023-03-16T18:22:36ZTTPS: T1082, T1112, T1042, T1060, T1012 ScoreMeaningExample10Known badA malware family...
Malware Analysis – evasion – 3a245c6a62a254788fc36022f50f07f2
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 3a245c6a62a254788fc36022f50f07f2SHA1: e281e9f8bffb4b94b06253b007a3e84814faa276ANALYSIS DATE: 2023-03-16T17:30:30ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – discovery – ccaffcd12dcb30adb5250f30026ecd1e
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploitMD5: ccaffcd12dcb30adb5250f30026ecd1eSHA1: 4048dc71db497f641a4f35eb00ac3c163c394978ANALYSIS DATE: 2023-03-16T17:44:04ZTTPS: T1112, T1222, T1012, T1031, T1562, T1489, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – b2a6dcdbb027343c7aefda146dd888a5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: b2a6dcdbb027343c7aefda146dd888a5SHA1: 13bfb61fefba74c6313b3806793a461542efe0dfANALYSIS DATE: 2023-03-16T18:39:07ZTTPS: T1060, T1112, T1012, T1082,...
HackerOne Bug Bounty Disclosure: [cve-2022-44268]-arbitrary-remote-leak-via-imagemagickbymikkocarreon
Programme HackerOne HackerOne HackerOne Submitted by mikkocarreon mikkocarreon Report Arbitrary Remote Leak via ImageMagick Full Report A considerable amount...
Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme
A coalition of law enforcement agencies across Europe and the U.S. announced the takedown of ChipMixer, an unlicensed cryptocurrency mixer...
Cl0p Ransomware Victim: AXISBANK[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
What’s Wrong with Manufacturing?
In last year's edition of the Security Navigator we noted that the Manufacturing Industry appeared to be totally over-represented in...
Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency
Multiple threat actors, including a nation-state group, exploited a critical three-year-old security flaw in Progress Telerik to break into an...
LockBit 3.0 Ransomware Victim: regaltax[.]us
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Daily Vulnerability Trends: Thu Mar 16 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-25610 No description provided CVE-2023-1017An out-of-bounds write vulnerability exists in TPM2.0's Module...
Malware Analysis – amadey – 7dc5c70b9d7bfeb2dcbf7347794b0057
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:pseudomanuscrypt, family:redline, family:smokeloader, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, botnet:pub1, botnet:sprg, backdoor, clipper, discovery, infostealer, loader, persistence,...
Malware Analysis – – c19548ebf324b01ddc5cdf18480f7a24
Score: 1 MALWARE FAMILY: TAGS:MD5: c19548ebf324b01ddc5cdf18480f7a24SHA1: 4afa21eb10b55b08289706b71c9a693937284432ANALYSIS DATE: 2023-03-16T03:58:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
