Malware Analysis – –
Score: 8 MALWARE FAMILY: TAGS:MD5: SHA1: ANALYSIS DATE: 2022-10-05T13:12:54ZTTPS: T1012, T1082, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 95503e66b8b02be76b487665cd22127e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95503e66b8b02be76b487665cd22127eSHA1: aa950f5da6313eea5b765e68ba5842316f7c31eaANALYSIS DATE: 2022-10-05T14:24:31ZTTPS: T1060, T1112, T1222, T1053,...
Malware Analysis – djvu – ffcfc1526b2540403e83ffb80c1274a9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:10:26ZTTPS: T1130, T1112, T1082,...
Malware Analysis – djvu – fc47e9571ca6ac5aa22494a8924c5303
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: fc47e9571ca6ac5aa22494a8924c5303SHA1: 3f38e682284990961cec20317ef33e675dc20d43ANALYSIS DATE: 2022-10-05T14:27:13ZTTPS: T1060, T1112, T1082, T1012,...
Malware Analysis – smokeloader – ffcfc1526b2540403e83ffb80c1274a9
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: ffcfc1526b2540403e83ffb80c1274a9SHA1: edbec265adb2149eae9b433df946ee9e69e5deb8ANALYSIS DATE: 2022-10-05T14:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – lockbit – a9fb78ede24ebca4b2802637a0752c45
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, ransomwareMD5: a9fb78ede24ebca4b2802637a0752c45SHA1: 994226d8a3ddaad76fade66c77958f00f3cf3d5aANALYSIS DATE: 2022-10-04T05:37:03ZTTPS: T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Erlik 2 – Vulnerable-Flask-App
Erlik 2 - Vulnerable-Flask-App Tested - Contact https://twitter.com/anilyelken06 https://medium.com/@anilyelken Download Vulnerable-Flask-App If you like the site, please consider joining the...
Cobalt Stike Beacon Detected – 157[.]230[.]50[.]134:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]235[.]95[.]50:87
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 59[.]173[.]17[.]104:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]175[.]188:2096
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]49:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]192[.]151[.]207:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]139[.]100[.]167:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]109[.]43[.]215:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]136[.]232[.]171:8870
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 79[.]3[.]12[.]7:9002
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Veritas NetBackup SQL injection | CVE-2022-42303
NAME Veritas NetBackup SQL injection Platforms Affected:Veritas NetBackup 10.0Risk Level:8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Veritas NetBackup is vulnerable to SQL injection. A...
ZKTeco ZKSecurity BIO SQL injection | CVE-2022-36635
NAME ZKTeco ZKSecurity BIO SQL injection Platforms Affected:ZKTeco ZKSecurity BIO 4.1.2Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION ZKTeco ZKSecurity BIO is vulnerable to...
Centreon cross-site scripting | CVE-2022-39988
NAME Centreon cross-site scripting Platforms Affected:Centreon Centreon 22.04Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Centreon is vulnerable to cross-site scripting, caused by improper...
Johnson Controls Metasys ADX Server security bypass | CVE-2022-21936
NAME Johnson Controls Metasys ADX Server security bypass Platforms Affected:Johnson Controls Metasys ADX Server 12.0Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Johnson Controls...
Veritas NetBackup SQL injection | CVE-2022-42302
NAME Veritas NetBackup SQL injection Platforms Affected:Veritas NetBackup 10.0Risk Level:9Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Veritas NetBackup is vulnerable to SQL injection. A...
Veritas NetBackup SQL injection | CVE-2022-42304
NAME Veritas NetBackup SQL injection Platforms Affected:Veritas NetBackup 10.0Risk Level:8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Veritas NetBackup is vulnerable to SQL injection. A...
ZKTeco ZKSecurity BIO privilege escalation | CVE-2022-36634
NAME ZKTeco ZKSecurity BIO privilege escalation Platforms Affected:ZKTeco ZKSecurity BIO 3.0.5.0_RRisk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION ZKTeco ZKSecurity BIO could allow a...
