Daily Vulnerability Trends: Wed Nov 02 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-3786A buffer overrun can be triggered in X.509 certificate verification, specifically in...
APT trends report Q3 2022
For more than five years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of...
Malware Analysis – wannacry – 8178a7ed30cf865004edebae2e5e0a4f
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 8178a7ed30cf865004edebae2e5e0a4fSHA1: 12b649c2e7859e224faf16ed720b8cffc668d6bfANALYSIS DATE: 2022-11-02T03:00:32ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – – a4fcfcab7e8f332fde1df215505b01c3
Score: 1 MALWARE FAMILY: TAGS:MD5: a4fcfcab7e8f332fde1df215505b01c3SHA1: b09c7ed21e82cf1710de85500762de43bc3943ffANALYSIS DATE: 2022-11-02T03:39:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – d56f709686e8300b90bf1f532b451098
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: d56f709686e8300b90bf1f532b451098SHA1: 1d560b72e07df6b61824e80505d5fb96a5b11fd9ANALYSIS DATE: 2022-11-02T03:00:33ZTTPS: T1082, T1053, T1005, T1081, T1012, T1060,...
Malware Analysis – wannacry – eab40b007ca86f362aa392d43847639e
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: eab40b007ca86f362aa392d43847639eSHA1: 167b8a4514604ec8c2a63d5eaaa3fe9b08e943ceANALYSIS DATE: 2022-11-02T03:00:25ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – discovery – 63fc4630994a3a39633336254e873d67
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, trojanMD5: 63fc4630994a3a39633336254e873d67SHA1: aa7e505f56194a00298b366affb5bc97a2712064ANALYSIS DATE: 2022-11-02T04:07:43ZTTPS: T1490, T1059, T1107, T1060, T1112, T1088, T1089,...
Malware Analysis – evasion – b301c4b060dadf887e53d671aa6a7aff
Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b301c4b060dadf887e53d671aa6a7affSHA1: d6d5274b17f911b7f1923e2f7540926697b6049eANALYSIS DATE: 2022-11-02T04:21:34ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – 83d4ecf239705c042200ec89d3c3bbc8
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, botnet:google2, botnet:mario23_10, botnet:slovarik1btc, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 83d4ecf239705c042200ec89d3c3bbc8SHA1: f65ec33ef02435a23606f3f12786fc284a09e975ANALYSIS...
Malware Analysis – ransomware – aca640f5159565dbef2382379dcaf0a9
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: aca640f5159565dbef2382379dcaf0a9SHA1: d00d0efc22a3315a5a683eef10a4864f5e1e6b32ANALYSIS DATE: 2022-11-02T03:44:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – xenomorph – e39505e65aec6835f680c902e1c8f7d8
Score: 10 MALWARE FAMILY: xenomorphTAGS:family:xenomorph, banker, evasion, infostealer, ransomware, trojanMD5: e39505e65aec6835f680c902e1c8f7d8SHA1: 8b2984b8838067903ee3ff95d8a6823106216296ANALYSIS DATE: 2022-11-02T04:23:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – cf8e1c24065c6af0d2c64c8e454dc808
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: cf8e1c24065c6af0d2c64c8e454dc808SHA1: e2f5c145d78ea874ed2db9e99e7428e16c580860ANALYSIS DATE: 2022-11-02T04:21:42ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – 924a8b1d7396a7e21e026b4424fcd080
Score: 5 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 924a8b1d7396a7e21e026b4424fcd080SHA1: 1a6193b9c349913c13d4a2aeae208c027394f9c3ANALYSIS DATE: 2022-11-02T04:24:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – flubot – 42331cf55ee2174ac0d137d27633f7ea
Score: 10 MALWARE FAMILY: flubotTAGS:family:flubot, banker, discovery, evasion, infostealer, ransomware, trojanMD5: 42331cf55ee2174ac0d137d27633f7eaSHA1: c67ce535777198f1bac3a7b7bd34817255c05e13ANALYSIS DATE: 2022-11-02T04:23:22ZTTPS: T1046 ScoreMeaningExample10Known badA malware family...
Malware Analysis – chaos – 7c1a7587dbad352c2fa09c5429ecbc65
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, persistence, ransomware, spyware, stealerMD5: 7c1a7587dbad352c2fa09c5429ecbc65SHA1: b751ae175050134ac3907bc120d5f5b65f8bf1bdANALYSIS DATE: 2022-11-02T04:40:09ZTTPS: T1490, T1059, T1107, T1060, T1112, T1005,...
Malware Analysis – djvu – 272b7884bdb3f0a2ff4211028c87f114
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 272b7884bdb3f0a2ff4211028c87f114SHA1: 3eef2f14f6a8deb887d419fe1820b9a07de167d9ANALYSIS DATE: 2022-11-02T05:00:07ZTTPS: T1005, T1081, T1060, T1112, T1012, T1082,...
Malware Analysis – amadey – 93b1eeae0ea7984388508994bd2dc147
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – 35410ae61fbeb64eae041887425d08a6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 35410ae61fbeb64eae041887425d08a6SHA1: 47b0c25c7b16a705a7de451363abdf5556b223c4ANALYSIS DATE: 2022-11-02T04:40:45ZTTPS: T1012, T1005, T1081, T1082, T1222, T1053,...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 79[.]133[.]56[.]243:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]70:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 93[.]123[.]12[.]223:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 109[.]94[.]208[.]57:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 163[.]123[.]142[.]173:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
