Cobalt Stike Beacon Detected – 104[.]206[.]226[.]45:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
NTLMRecon – A Tool For Performing Light Brute-Forcing Of HTTP Servers To Identify Commonly Accessible NTLM Authentication Endpoints
NTLMRecon is a Golang version of the original NTLMRecon utility written by Sachin Kamath (AKA pwnfoo). NTLMRecon can be leveraged...
Malware Analysis – smokeloader – 41476924126a3f0ee8dbd9f697735fe4
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 41476924126a3f0ee8dbd9f697735fe4SHA1: 04177fd9a26c89e14e2418c15a743b01c73d7ec0ANALYSIS DATE: 2023-05-07T05:32:40ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – f1e1ba13f25549b988930f91f2f53893
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f1e1ba13f25549b988930f91f2f53893SHA1: 64b6305e491d7f580f778079da92d7da8be6b3a3ANALYSIS DATE: 2023-05-07T05:40:59ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – dc394d3ea860194695edd3d3ba78bde3
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: dc394d3ea860194695edd3d3ba78bde3SHA1: 4f9a35af35b6b12fb872f00df2c550882831fbc1ANALYSIS DATE: 2023-05-07T05:37:00ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 2d905075e3f781cdad5a6bc1b518f844
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2d905075e3f781cdad5a6bc1b518f844SHA1: 2b2f2e6e4ed798d697d05b83a4fc8953ac61fc60ANALYSIS DATE: 2023-05-07T05:33:06ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – c4401de2c4da49d29d12f48570296fab
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c4401de2c4da49d29d12f48570296fabSHA1: cbe0bef2c02c161fe74187765ac8747b34b1529eANALYSIS DATE: 2023-05-07T05:41:50ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – d52c74423536ade5ec030bf7cf3ab8b6
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d52c74423536ade5ec030bf7cf3ab8b6SHA1: ca0bcf07c5776222f2059525c347aeaf73a13a4aANALYSIS DATE: 2023-05-07T05:41:28ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 353aff57fdc7340fcadf07f73e69ad01
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 353aff57fdc7340fcadf07f73e69ad01SHA1: d918594228069464e4214762ce0b6bae4c4c1cd3ANALYSIS DATE: 2023-05-07T05:47:29ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 6c3ed51f315ea798ae0763a4a5345125
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 6c3ed51f315ea798ae0763a4a5345125SHA1: 445945a3bff4cc8a6066cf24848f3d42f969c0a4ANALYSIS DATE: 2023-05-07T05:44:37ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – f4216cd1c58ff5a369888e88dd831819
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f4216cd1c58ff5a369888e88dd831819SHA1: 9b5733d68ba4d8d8d1f5f330577ea2ef032dd69aANALYSIS DATE: 2023-05-07T05:50:36ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 33b2edf923538aa7a7d4b0a91e2f8939
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 33b2edf923538aa7a7d4b0a91e2f8939SHA1: 7749af7d341c73d641b5032ebccf13abc47b606aANALYSIS DATE: 2023-05-07T05:49:44ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – b13905aed28c627d8a37058d885a5237
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: b13905aed28c627d8a37058d885a5237SHA1: 6e86898992119c689905c286d813e06a6fd6922cANALYSIS DATE: 2023-05-07T05:51:22ZTTPS: T1060, T1112, T1158, T1088, T1089, T1082,...
Malware Analysis – smokeloader – c9f72bec0e2a78e1ffb82ff449b16693
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c9f72bec0e2a78e1ffb82ff449b16693SHA1: 072bc9b7fc10d5073615d428ea7588372e0c0a9fANALYSIS DATE: 2023-05-07T05:51:47ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 3e7cbc9cbae03ad318ff536241560226
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3e7cbc9cbae03ad318ff536241560226SHA1: ece224efacddf1bc959f6d4e307cfdd9e4dde9acANALYSIS DATE: 2023-05-07T05:58:36ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 46f88c8b8def4d0838e25c878adce5fe
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 46f88c8b8def4d0838e25c878adce5feSHA1: 1b966c3a2a85327e7022072e2056a39b222ca8f3ANALYSIS DATE: 2023-05-07T06:07:34ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 3064795fdcaf588ad08ca276288e2651
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3064795fdcaf588ad08ca276288e2651SHA1: ad584775e036ad1dba2ade492a15022755001572ANALYSIS DATE: 2023-05-07T05:59:48ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – b5f4b3373b1584aa7dafd9ce7bee6dd0
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, trojanMD5: b5f4b3373b1584aa7dafd9ce7bee6dd0SHA1: 6827a5b5113cd811a8274faf48a0ba17fd1d732fANALYSIS DATE: 2023-05-07T06:02:18ZTTPS: T1060, T1112, T1088, T1089, T1158, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – smokeloader – 48492a8b1f66f7a8df0cec4d4f2cf1cc
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 48492a8b1f66f7a8df0cec4d4f2cf1ccSHA1: 3189295c7ecc10f3f651590cc2ed870c4ebeef2cANALYSIS DATE: 2023-05-07T06:10:10ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 7336d7a5e81c0e607764b7adc1e5abfc
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 7336d7a5e81c0e607764b7adc1e5abfcSHA1: 7240aceb3ef31f84c8ff60b1fb3be0b73349c51eANALYSIS DATE: 2023-05-07T06:09:54ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 2611ccd6c6af11fc801e46790fececc2
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 2611ccd6c6af11fc801e46790fececc2SHA1: 2e3e6a317a70e33826a741cbbd19eaf8d1ecf411ANALYSIS DATE: 2023-05-07T06:07:37ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – dcde4e61d2c5e9e5876bf89fc1e352cb
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: dcde4e61d2c5e9e5876bf89fc1e352cbSHA1: 0f715766622d41e3a2fec4cce70a30f6679503d1ANALYSIS DATE: 2023-05-07T06:08:27ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – eecfd927b14fe50c3fd0382322a7e333
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: eecfd927b14fe50c3fd0382322a7e333SHA1: 743add9474dc7fbc463121ab6394b7881473cbd9ANALYSIS DATE: 2023-05-07T06:20:25ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 87062ce76aebb096ca5271b4454025a5
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 87062ce76aebb096ca5271b4454025a5SHA1: 63b378af1e54fc41fa18d9a2ecb1a30c06e6f534ANALYSIS DATE: 2023-05-07T06:12:25ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
