Cobalt Stike Beacon Detected – 161[.]35[.]115[.]28:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 8aafe420b4e2d00e1f85a0374787a0e1
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8aafe420b4e2d00e1f85a0374787a0e1SHA1: 283579190345db13963c73ba48467a6306840547ANALYSIS DATE: 2022-11-23T19:12:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 4e66f4af565563d95fe443d36dca93a0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: 4e66f4af565563d95fe443d36dca93a0SHA1: 81ea30f87ae9e096e8bafeab1affbd5e1c0ba51fANALYSIS DATE: 2022-11-23T19:06:20ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – ransomware – a2716bd9f4f7f0ffa5b49881df348602
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: a2716bd9f4f7f0ffa5b49881df348602SHA1: 04a49bd555bb591fe7b9d9ea3b3e08494aecdf42ANALYSIS DATE: 2022-11-23T19:05:58ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – – ca680d9f26a0e5e9a4c2294c488bf46b
Score: 1 MALWARE FAMILY: TAGS:MD5: ca680d9f26a0e5e9a4c2294c488bf46bSHA1: f129f6c0e1ef884a6e1ac1b4e526d34ed8f02c37ANALYSIS DATE: 2022-11-23T19:21:43ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 149[.]248[.]20[.]183:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]182[.]211[.]71:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]19[.]149:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]37[.]185:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – 6fb99593905840cf95ab2364c4c87d63
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6fb99593905840cf95ab2364c4c87d63SHA1: 8d0aafee1cabe7b6cc0caf93ffafd3da3bff8b9bANALYSIS DATE: 2022-11-23T20:48:15ZTTPS: T1082, T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 33cf9aac2e4768e8c9e10aeb8f6a9ad6
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 33cf9aac2e4768e8c9e10aeb8f6a9ad6SHA1: 8c0ba6cafeb8b38a964bc178b96233af7e89f5e7ANALYSIS DATE: 2022-11-23T19:22:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – 444072ec68d9dad8de5f9060c74e3b90
Score: 7 MALWARE FAMILY: TAGS:MD5: 444072ec68d9dad8de5f9060c74e3b90SHA1: f3845470366d4ce52a18492f279e3a89ef25e485ANALYSIS DATE: 2022-11-23T19:53:54ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – b3429e9f4084ec931dad480f0940f97f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: b3429e9f4084ec931dad480f0940f97fSHA1: 0c1ba0f19fa049d3bef2d52ccbd816bb04916a84ANALYSIS DATE: 2022-11-23T22:31:54ZTTPS: T1012, T1222, T1082, T1005,...
Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
Ducktail information stealer continues to evolve
The operators behind the Ducktail information stealer continue to improve their malicious code, operators experts warn. In late July 2022,...
Malware Analysis – evasion – a7199d2ff40258ac7427ce9b513fe3fe
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: a7199d2ff40258ac7427ce9b513fe3feSHA1: a9eecc7ad31d4d57cb6ff57b1588f18e4830bcc2ANALYSIS DATE: 2022-11-23T14:18:03ZTTPS: T1490, T1012, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – evasion – 9e4cab69981fa679c9a84375676fcc1d
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9e4cab69981fa679c9a84375676fcc1dSHA1: f58cc7f89276024b549330f7b957ff04d0ac1c42ANALYSIS DATE: 2022-11-23T14:44:56ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – persistence – 34926506fefc6f5ebace4672d93af6ba
Score: 7 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 34926506fefc6f5ebace4672d93af6baSHA1: 4afaa8fe82b71906acf06cb2d7e52de160df2e85ANALYSIS DATE: 2022-11-23T14:26:51ZTTPS: T1060, T1112, T1491, T1012, T1082 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – persistence – 8c6309eabacbf95f01cea9e1e84aad4c
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8c6309eabacbf95f01cea9e1e84aad4cSHA1: fe1e785fb4519f1e4ed15351b68b399185c17aadANALYSIS DATE: 2022-11-23T14:22:45ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 95cef99dd8ed824a90e544deb4f0d56d
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 95cef99dd8ed824a90e544deb4f0d56dSHA1: ce4ca4243380ce94c0614d250cc8f950213636edANALYSIS DATE: 2022-11-23T14:42:21ZTTPS: T1060, T1112, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – b0eea251428a489d202d8dc6c647077c
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b0eea251428a489d202d8dc6c647077cSHA1: 4262d165c5aa411b7f9e65d71a7cbe7c68db5747ANALYSIS DATE: 2022-11-23T14:59:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 9792eb6458541aa819ffdfff1b9cb12c
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 9792eb6458541aa819ffdfff1b9cb12cSHA1: 6b1d6ddd6e10d589956eaee390fbbac8efc525f9ANALYSIS DATE: 2022-11-23T15:04:03ZTTPS: T1082, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
