CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates to address vulnerabilities in multiple products. An attacker...
Security
Cobalt Stike Beacon Detected – 47[.]108[.]52[.]84:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 67[.]205[.]138[.]197:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]211[.]124[.]126:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]91[.]53:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]3[.]76[.]38:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 122[.]152[.]234[.]71:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]45[.]188[.]91:2087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]100[.]126:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: ISC Releases Security Advisories for Multiple Versions of BIND 9
ISC Releases Security Advisories for Multiple Versions of BIND 9 The Internet Systems Consortium (ISC) has released security advisories that...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates to address vulnerabilities in multiple products. An attacker...
Malware Analysis – djvu – e0227bb951b0bd76d3a21ba42abd3574
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: e0227bb951b0bd76d3a21ba42abd3574SHA1: d2c4f9ccaf0b92ebb9a6aba4179092f5df187da9ANALYSIS DATE: 2023-06-22T17:59:39ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – amadey – 14aa4c4bfae7b8b397572cd88870000e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:smokeloader, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, botnet:pub1, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 14aa4c4bfae7b8b397572cd88870000eSHA1:...
Malware Analysis – djvu – 2a3f36cc1fd1f55dc98fd6592cd5d80a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 2a3f36cc1fd1f55dc98fd6592cd5d80aSHA1: 9eabc031f809f6afd46f12de051a6b903952db7bANALYSIS DATE: 2023-06-22T18:54:29ZTTPS: T1060, T1112, T1005, T1081,...
Malware Analysis – evasion – 1b4e39e65dcc093252b4ddcf6951f258
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 1b4e39e65dcc093252b4ddcf6951f258SHA1: 36153e151d49ce560049a4e17d9118eac1bba135ANALYSIS DATE: 2023-06-22T19:18:20ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 45841d5084e8b6dcb2cae5f631abf9d0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 45841d5084e8b6dcb2cae5f631abf9d0SHA1: c9be8e5c7559dd9d623f94247cead30f3efaf231ANALYSIS DATE: 2023-06-22T18:16:28ZTTPS: T1082, T1012, T1053, T1005,...
Malware Analysis – discovery – ce900ddf20b2554e60cb17de79ddfa27
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, trojanMD5: ce900ddf20b2554e60cb17de79ddfa27SHA1: 07b5f2d9e9683ca4bdf983f53b9726270094ffaaANALYSIS DATE: 2023-06-22T18:52:16ZTTPS: T1012, T1120, T1082, T1088, T1089, T1112, T1102,...
EndExt – Go Tool For Extracting All The Possible Endpoints From The JS Files
EndExt is a .go tool for extracting all the possible endpoints from the JS files Idea When you crawll all...
Malware Analysis – djvu – 9a978ce2ff697915c879d31785b37e16
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 9a978ce2ff697915c879d31785b37e16SHA1: bc58374ccf7bff13fb0bf0dfe17fb32c979979f4ANALYSIS DATE: 2023-06-22T15:58:08ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – amadey – feb6ecd04a1ad4ea6336f1c5e0f7c07c
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:smokeloader, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, botnet:pub1, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: feb6ecd04a1ad4ea6336f1c5e0f7c07cSHA1: 2b3e00704e2780d33f0ce72bbd8f61115f8c55dcANALYSIS...
Malware Analysis – djvu – 0fa8f9afbe4ca05578fbc00fe8fd1e45
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 0fa8f9afbe4ca05578fbc00fe8fd1e45SHA1: b41ce3a558f981cbcc4819654564c8c497607611ANALYSIS DATE: 2023-06-22T16:15:27ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – persistence – 52105eaff1b7b02bf950b80771e9bda9
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 52105eaff1b7b02bf950b80771e9bda9SHA1: e16ecdfebf018faa7d4cf92ea03de06e5aa3e861ANALYSIS DATE: 2023-06-22T17:04:09ZTTPS: T1107, T1490, T1112, T1057, T1060, T1082, T1012, T1120,...
Malware Analysis – amadey – 9c13d9bdb722f723067c315d716e8128
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, backdoor, discovery, ransomware, trojanMD5: 9c13d9bdb722f723067c315d716e8128SHA1: f3398068d3e4f085a9a44adee2ebca5f60082ab2ANALYSIS DATE: 2023-06-22T16:35:54ZTTPS: T1012, T1120, T1082, T1222...
Malware Analysis – djvu – d66da7cdb4b5e5f5b18d686da4ea9d5c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: d66da7cdb4b5e5f5b18d686da4ea9d5cSHA1: 763add994f6ca9f305dcc21487da30de5aeaeeb4ANALYSIS DATE: 2023-06-22T16:37:55ZTTPS: T1005, T1081, T1222, T1082,...
