Daily Vulnerability Trends: Tue Jan 03 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27518Unauthenticated remote arbitrary code executionCVE-2022-47949The Nintendo NetworkBuffer class, as used in Animal...
Malware Analysis – smokeloader – d01a7d120480d9819cfbaf680a7a87c9
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d01a7d120480d9819cfbaf680a7a87c9SHA1: 51eff6b124419ac88ff6c7580c7c82d2cc25808bANALYSIS DATE: 2023-01-03T03:26:28ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 7db8381bc4b59273ddfb708d9321f33a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 7db8381bc4b59273ddfb708d9321f33aSHA1: 7a6c38a107c6536f3e46147db35349238ca0bd66ANALYSIS DATE: 2023-01-03T04:35:23ZTTPS: T1060, T1112, T1082, T1012,...
Malware Analysis – djvu – 221439c77c4ebe920e2595fbd4a32069
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 221439c77c4ebe920e2595fbd4a32069SHA1: fd3ec3405a6c9116e0a4b16f4e5b4e7886f48d41ANALYSIS DATE: 2023-01-03T04:15:00ZTTPS: T1053, T1130, T1112, T1222, T1060,...
Malware Analysis – djvu – c04760e74be54ca3cadb73334a12487b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: c04760e74be54ca3cadb73334a12487bSHA1: 36b66864b9302dcadca19d90d934654f579ff49bANALYSIS DATE: 2023-01-03T05:20:54ZTTPS: T1130, T1112, T1060, T1222, T1082...
Malware Analysis – bootkit – 2dbb19618eb730077e80a26464602444
Score: 10 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, exploit, persistence, trojanMD5: 2dbb19618eb730077e80a26464602444SHA1: f3b9459d2b8a37564b7c3c362eaad80eb52ce51cANALYSIS DATE: 2023-01-03T05:28:27ZTTPS: T1067, T1222, T1082, T1088, T1089, T1112...
Malware Analysis – ransomware – 9608c8b6c8d80fdc67b99edd3c53d3d2
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 9608c8b6c8d80fdc67b99edd3c53d3d2SHA1: 37b11d3d7b7a1d18daafd6c63b33526860aaefe6ANALYSIS DATE: 2023-01-03T05:30:57ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – 70bbc9e9b5b79997153143323248b548
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 70bbc9e9b5b79997153143323248b548SHA1: 3dee9ea796f66942807f0f947f3ed2294a1d02fcANALYSIS...
Cobalt Stike Beacon Detected – 139[.]180[.]208[.]67:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]75[.]247[.]178:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 93[.]95[.]229[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]107[.]122[.]86:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]254[.]240[.]188:60001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]106[.]120[.]30:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]223[.]236[.]115:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]215[.]85[.]176:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]75[.]1[.]146:10001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]109[.]197:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]136[.]153[.]12:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 62[.]204[.]41[.]237:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 195[.]178[.]120[.]47:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Vice Society Ransomware Victim: YMCA of Metropolitan Washington
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Vice Society Ransomware Victim: Kujalleq Municipality
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Vice Society Ransomware Victim: Rooks Heath School
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
