Cobalt Stike Beacon Detected – 198[.]46[.]190[.]21:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 172[.]247[.]9[.]220:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]202[.]169:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]101[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Teler-Waf – A Go HTTP Middleware That Provides Teler IDS Functionality To Protect Against Web-Based Attacks And Improve The Security Of Go-based Web Applications
teler-waf is a comprehensive security solution for Go-based web applications. It acts as an HTTP middleware, providing an easy-to-use interface...
Malware Analysis – amadey – 2cd1278453b56dd0a5f0fa7e6d2a7866
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 2cd1278453b56dd0a5f0fa7e6d2a7866SHA1:...
Malware Analysis – xworm – 60756214f351f2d6d1a2cb89dc9853b5
Score: 10 MALWARE FAMILY: xwormTAGS:family:xworm, persistence, ransomware, rat, trojanMD5: 60756214f351f2d6d1a2cb89dc9853b5SHA1: 8c478657c1cce1906a72526ed231083ce5a9bed1ANALYSIS DATE: 2023-05-04T15:20:25ZTTPS: T1082, T1053, T1060, T1112, T1012, T1491 ScoreMeaningExample10Known...
Malware Analysis – djvu – 2ce0cb2c47637c78cb7cd07af95d912d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 2ce0cb2c47637c78cb7cd07af95d912dSHA1: 21c6c43aced8e765ee47043dbe1f90d9e213bf7dANALYSIS DATE: 2023-05-04T15:15:00ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – 65178f6a1891f152c05326a628e6fa3a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 65178f6a1891f152c05326a628e6fa3aSHA1: 6a9b6ab36f14db9948e988c68d1b91d733315578ANALYSIS DATE: 2023-05-04T16:10:23ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – amadey – 325cca727c1640e9c911a5f45fbc397b
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 325cca727c1640e9c911a5f45fbc397bSHA1:...
Malware Analysis – bootkit – 00f570c756caab8c20ecabdc996c69d3
Score: 8 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, exploit, persistence, upxMD5: 00f570c756caab8c20ecabdc996c69d3SHA1: 88d2f10c67a4566478e9b2ceddd52cac9b5fdb3bANALYSIS DATE: 2023-05-04T16:18:07ZTTPS: T1222, T1112, T1067, T1012, T1082, T1060,...
Malware Analysis – bootkit – 5d6c95558f08c90419758761bf4ab83d
Score: 10 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, persistence, ransomware, trojanMD5: 5d6c95558f08c90419758761bf4ab83dSHA1: 7fd6074f848d83879ce2246f4cfc98266043ddafANALYSIS DATE: 2023-05-04T16:07:05ZTTPS: T1012, T1067, T1053, T1060, T1112, T1031,...
Malware Analysis – persistence – 8ea203015739494c182dcf1b5289aa60
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8ea203015739494c182dcf1b5289aa60SHA1: f6c99e81222a9bffad9aa3893980240f507b4e63ANALYSIS DATE: 2023-05-04T16:29:48ZTTPS: T1082, T1060, T1112, T1491, T1012, T1053 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 20f799deca580973c2fb2516421bf5ee
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 20f799deca580973c2fb2516421bf5eeSHA1: 04ce89b9ef62714eb0d8d07cc18347ef34b4d7ccANALYSIS DATE: 2023-05-04T17:52:15ZTTPS: T1005, T1081, T1053, T1012,...
Malware Analysis – evasion – 0df6a3da3b4eb4def6eb111b2dd01a20
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 0df6a3da3b4eb4def6eb111b2dd01a20SHA1: 41d9bebe4d89458709ce7d0407f0a551110f3cb0ANALYSIS DATE: 2023-05-04T16:35:55ZTTPS: T1082, T1012, T1120, T1031, T1491, T1112, T1060, T1130, T1018...
Malware Analysis – evasion – ba5500e35710c6221dbd322e46d80db6
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ba5500e35710c6221dbd322e46d80db6SHA1: da2e8153dc88ffb30d8f0510665cfd93993d2ad2ANALYSIS DATE: 2023-05-04T17:00:16ZTTPS: T1082, T1012, T1491, T1112, T1120, T1102 ScoreMeaningExample10Known badA malware family...
Cobalt Stike Beacon Detected – 101[.]42[.]17[.]226:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 211[.]193[.]21[.]161:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 112[.]124[.]64[.]221:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]14[.]16[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]42[.]2[.]141:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]127[.]45:8800
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]100[.]249[.]61:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 92[.]255[.]85[.]169:55553
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
