Cobalt Stike Beacon Detected – 1[.]13[.]192[.]171:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – b95c6f70b133038529bbd6e2104f7c09
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b95c6f70b133038529bbd6e2104f7c09SHA1: 243655716e183ecc8c42be7159e1751037a17f52ANALYSIS DATE: 2022-11-11T08:50:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Cobalt Stike Beacon Detected – 124[.]220[.]186[.]174:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]247[.]32[.]61:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]133[.]120:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]150[.]24[.]122:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 6217143e74d63023a7ffc734769cee70
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6217143e74d63023a7ffc734769cee70SHA1: b83a507b8edada916cfd00fac554d3c92919697aANALYSIS DATE: 2022-11-11T10:01:49ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – amadey – c76febd9daaa3e0947a5ea9605f25666
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, rat,...
Malware Analysis – – 989ae3d195203b323aa2b3adf04e9833
Score: 1 MALWARE FAMILY: TAGS:MD5: 989ae3d195203b323aa2b3adf04e9833SHA1: 31a45521bc672abcf64e50284ca5d4e6b3687dc8ANALYSIS DATE: 2022-11-11T09:58:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 3fa9b77952faa7ca394215a860d03001
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan,...
Malware Analysis – – 920769685bd617b61b989ab41011af4a
Score: 1 MALWARE FAMILY: TAGS:MD5: 920769685bd617b61b989ab41011af4aSHA1: beff31e1163a142adfda7d14bb87a32a9c918e7eANALYSIS DATE: 2022-11-11T11:11:59ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 44f568a2512f3a7d5b7b1c8f59985924
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 44f568a2512f3a7d5b7b1c8f59985924SHA1: 7865cc1ced7497b89eab46a255c9720bac4bce93ANALYSIS DATE: 2022-11-11T10:35:49ZTTPS: T1082, T1053, T1012, T1005,...
Malware Analysis – octo – 0e2772540fc65dfcb945a087334105d0
Score: 10 MALWARE FAMILY: octoTAGS:family:octo, banker, evasion, infostealer, ransomware, rat, trojanMD5: 0e2772540fc65dfcb945a087334105d0SHA1: d1df8c840edddf39e9352149a888fd981b5ed956ANALYSIS DATE: 2022-11-11T11:48:45ZTTPS: ScoreMeaningExample10Known badA malware family was...
Malware Analysis – amadey – 097dc46d2c1130993850a56bee85a0ec
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Researcher received a $70k award for a Google Pixel lock screen bypass
Google fixed a high-severity security bug affecting all Pixel smartphones that can allow attackers to unlock the devices. Google has...
Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine
Microsoft linked Prestige ransomware attacks against organizations in Ukraine and Poland to Russia-linked threat actors. In Mid-October, Microsoft Threat Intelligence...
Daily Vulnerability Trends: Fri Nov 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41049Windows Mark of the Web Security Feature Bypass Vulnerability. This CVE ID...
The state of cryptojacking in the first three quarters of 2022
Cryptocurrency prices were dropping from the end of 2021 and throughout the first half of 2022. Although finance experts and...
Malware Analysis – phobos – 760b7e6a810644e590d70673b6f5e63a
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: 760b7e6a810644e590d70673b6f5e63aSHA1: f60f8a4a666d7c3226f30dddfe69472e1a88b579ANALYSIS DATE: 2022-11-11T04:55:04ZTTPS: T1005, T1081, T1060, T1112, T1107, T1490,...
Malware Analysis – smokeloader – 6145140c63d544ad4c180add18649d90
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6145140c63d544ad4c180add18649d90SHA1: e09b003b80140d5f9153eecbcb069c715104621dANALYSIS DATE: 2022-11-11T03:19:18ZTTPS: T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – 49839f0c227b5f9399b59f6ae94a7c7b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 49839f0c227b5f9399b59f6ae94a7c7bSHA1: 332620e2e360d471736d714f3f5781354702d9a1ANALYSIS DATE: 2022-11-11T04:29:38ZTTPS: T1060, T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – d5f5c94606e452defe93cc2d32dd701a
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d5f5c94606e452defe93cc2d32dd701aSHA1: c83c182d1761919bf9345ad29bade6800d51c948ANALYSIS DATE: 2022-11-11T05:23:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – persistence – 03d904af558e663f625206e274e10079
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 03d904af558e663f625206e274e10079SHA1: fb9ed70650e15b880d34b1c00380590632c2fba8ANALYSIS DATE: 2022-11-11T05:01:24ZTTPS: T1491, T1112, T1082, T1005, T1081, T1107, T1490, T1060...
Malware Analysis – ransomware – 0791dcb7252adcb7c0545b315ad0b24c
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 0791dcb7252adcb7c0545b315ad0b24cSHA1: f7dd0058ded8dbccb2665f8af455f86030ffbf43ANALYSIS DATE: 2022-11-11T05:22:58ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
