Cobalt Stike Beacon Detected – 170[.]187[.]163[.]119:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]142[.]69[.]99:55443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]107[.]110:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]155[.]90[.]81:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]176[.]232:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 3a44d82dc4d08ac806741e8fc989847d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 3a44d82dc4d08ac806741e8fc989847dSHA1: cf606b46c11476a7ecc8617fb9013f3134db7f0bANALYSIS DATE: 2022-10-10T19:58:27ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Cobalt Stike Beacon Detected – 194[.]190[.]152[.]180:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 1e5c8f3bfb618c7a29948fa3c021774c
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 1e5c8f3bfb618c7a29948fa3c021774cSHA1: d1282b0f46a9b613f1d2d4a599e8d3bfb72e7ccdANALYSIS DATE: 2022-10-10T19:58:04ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 3a44d82dc4d08ac806741e8fc989847d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 3a44d82dc4d08ac806741e8fc989847dSHA1: cf606b46c11476a7ecc8617fb9013f3134db7f0bANALYSIS DATE: 2022-10-10T19:59:03ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 65df118598bd208eaefc6f290393a9a3
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 65df118598bd208eaefc6f290393a9a3SHA1: d700a0a6b595ad94ce14c028f80a56168dbf59e8ANALYSIS DATE: 2022-10-10T20:00:05ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 15cb8886f26e02cf291796361f4e2c68
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 15cb8886f26e02cf291796361f4e2c68SHA1: 70f13d50677606c51aa2a0c9eed2d03af4decfe1ANALYSIS DATE: 2022-10-10T19:59:23ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 65df118598bd208eaefc6f290393a9a3
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 65df118598bd208eaefc6f290393a9a3SHA1: d700a0a6b595ad94ce14c028f80a56168dbf59e8ANALYSIS DATE: 2022-10-10T19:59:38ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – smokeloader – afb4d8b4ebadba7cad1455fcec65fa90
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: afb4d8b4ebadba7cad1455fcec65fa90SHA1: d8137a043c6576344134dfd1895a89e0111c9178ANALYSIS DATE: 2022-10-10T20:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – afb4d8b4ebadba7cad1455fcec65fa90
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: afb4d8b4ebadba7cad1455fcec65fa90SHA1: d8137a043c6576344134dfd1895a89e0111c9178ANALYSIS DATE: 2022-10-10T20:06:53ZTTPS:...
Malware Analysis – djvu – 395bfcca7c226c0382118742fe8b0bc4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 395bfcca7c226c0382118742fe8b0bc4SHA1: f76cdad51ae0c528d74302e07899816a981e5f68ANALYSIS...
Malware Analysis – smokeloader – 395bfcca7c226c0382118742fe8b0bc4
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 395bfcca7c226c0382118742fe8b0bc4SHA1: f76cdad51ae0c528d74302e07899816a981e5f68ANALYSIS DATE: 2022-10-10T21:02:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 477f4d9acf2c970ddaab25d54fa585f7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 477f4d9acf2c970ddaab25d54fa585f7SHA1: 840c64d9a713cba9506a75d16034e86bf724f788ANALYSIS DATE: 2022-10-10T21:40:57ZTTPS: T1222, T1082, T1053, T1005,...
Malware Analysis – djvu – 9d78ecc6aea6f2015fcb471bee2df828
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 9d78ecc6aea6f2015fcb471bee2df828SHA1: 9b1f9e641233ca7ce16b412fe5520519346a5349ANALYSIS DATE: 2022-10-10T22:16:14ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – smokeloader – e5b420b08c831674185ed35b1c5fa16b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e5b420b08c831674185ed35b1c5fa16bSHA1: c3eb72c03f27f8d27ddb11d0057f95612531ea70ANALYSIS DATE: 2022-10-10T22:03:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 3c937e41155c84430617e0a8e6effb57
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 3c937e41155c84430617e0a8e6effb57SHA1: bbcbeadb9144092eddf82c20120288cbb2f4698cANALYSIS DATE: 2022-10-10T22:04:18ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – djvu – e5b420b08c831674185ed35b1c5fa16b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: e5b420b08c831674185ed35b1c5fa16bSHA1: c3eb72c03f27f8d27ddb11d0057f95612531ea70ANALYSIS DATE: 2022-10-10T22:02:49ZTTPS:...
CVE-2022-40684 flaw in Fortinet products is being exploited in the wild
Fortinet has confirmed that the recently disclosed critical authentication bypass issue (CVE-2022-40684) is being exploited in the wild. Last week,...
LockBit 3.0 Ransomware Victim: jtchapman[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tdwood[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
