Cobalt Stike Beacon Detected – 43[.]142[.]147[.]186:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]13:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 188[.]241[.]240[.]137:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]112[.]185:11
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – ffa9434c90b194b32d5ec9ad565ac875
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ffa9434c90b194b32d5ec9ad565ac875SHA1: b53d13666b21224c4960688d15b80a30e2b27e6dANALYSIS DATE: 2022-10-07T08:12:50ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – djvu – 0c46d0619219da90a35d94bcf4d7e094
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 0c46d0619219da90a35d94bcf4d7e094SHA1: 43cf7800e5bcdeb439cff1c230a5681682fbc03bANALYSIS DATE: 2022-10-07T08:43:10ZTTPS:...
Malware Analysis – smokeloader – 0c46d0619219da90a35d94bcf4d7e094
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0c46d0619219da90a35d94bcf4d7e094SHA1: 43cf7800e5bcdeb439cff1c230a5681682fbc03bANALYSIS DATE: 2022-10-07T08:31:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – f456b83895119b2e6aca1422df7aa11b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: f456b83895119b2e6aca1422df7aa11bSHA1: 3d9c11bf2edae9e7aedd0c4ff160ce0322b7a5faANALYSIS DATE: 2022-10-07T08:31:58ZTTPS: T1082, T1005, T1081, T1012,...
Cobalt Stike Beacon Detected – 174[.]137[.]49[.]238:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]108[.]216[.]93:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 14[.]225[.]205[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 79afe5212a85f53a83ec1cf4d3ef1cb1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 79afe5212a85f53a83ec1cf4d3ef1cb1SHA1: ede4d779271049a10d83fbd9fbc1394d1b32db47ANALYSIS DATE: 2022-10-07T09:16:28ZTTPS: T1005, T1081, T1012, T1082,...
Cobalt Stike Beacon Detected – 106[.]52[.]130[.]164:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 573d5adbc8aa739642ae36bedfcbcc0b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 573d5adbc8aa739642ae36bedfcbcc0bSHA1: bedd44262ec356e1e130ae27f6e075e91fef1eb5ANALYSIS DATE: 2022-10-07T09:13:22ZTTPS: T1222, T1053, T1005, T1081,...
Malware Analysis – smokeloader – 782995a03137a524e3568041ceba4fc4
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 782995a03137a524e3568041ceba4fc4SHA1: 8eef8e69d40d085aa00ba2e1e039cbfb71006a86ANALYSIS DATE: 2022-10-07T09:32:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 782995a03137a524e3568041ceba4fc4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 782995a03137a524e3568041ceba4fc4SHA1: 8eef8e69d40d085aa00ba2e1e039cbfb71006a86ANALYSIS DATE: 2022-10-07T09:30:51ZTTPS:...
Malware Analysis – djvu – 402a9ad95603a61734fb4930fdd5b6ef
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 402a9ad95603a61734fb4930fdd5b6efSHA1: a4849d63327bc943e5999a37dad4f87000c7f022ANALYSIS DATE: 2022-10-07T09:56:18ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – e2c04ff0f6965a5cc683a982a199a025
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: e2c04ff0f6965a5cc683a982a199a025SHA1: 12a3c1b0d25a35a9042590f657ba70fbd3e95130ANALYSIS DATE: 2022-10-07T09:42:45ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – smokeloader – 72b054d5ea096ec65e7f765a8bddcedc
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 72b054d5ea096ec65e7f765a8bddcedcSHA1: 0b2a87ffca78fbf6e7341390c864fc3dc3136192ANALYSIS DATE: 2022-10-07T10:01:06ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 72b054d5ea096ec65e7f765a8bddcedc
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 72b054d5ea096ec65e7f765a8bddcedcSHA1: 0b2a87ffca78fbf6e7341390c864fc3dc3136192ANALYSIS DATE:...
Hacker stole $566 million worth of Binance Coins from Binance Bridge
Threat actors have stolen 2 million Binance Coins (BNB), worth $566 million, from the popular Binance Bridge. Hackers have reportedly...
LilithBot Malware, a new MaaS offered by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
A look at the 2020–2022 ATM/PoS malware landscape
During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale...
LilithBot Malware, a new MaaS offere by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
