Cortex-XDR-Config-Extractor – Cortex XDR Config Extractor
This tool is meant to be used during Red Team Assessments and to audit the XDR Settings. With this tool...
Security
IpGeo – Tool To Extract IP Addresses From Captured Network Traffic File
IpGeo is a python tool to extract IP addresses from captured network traffic file (pcap/pcapng) and generate csv report containing...
Malware Analysis – ransomware – e923c11d0082b3fd504b7f2928fa8dc9
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e923c11d0082b3fd504b7f2928fa8dc9SHA1: e36cf45f396a85a9dfe7018a715932fbfeb6bf1eANALYSIS DATE: 2023-03-13T08:54:43ZTTPS: T1012, T1120, T1082, T1107, T1490, T1491, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – ransomware – b7b99284072bac295ed2f95ac1ddf743
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b7b99284072bac295ed2f95ac1ddf743SHA1: 25001dbd9add8582765a734a637725cefb99425bANALYSIS DATE: 2023-03-13T09:06:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – amadey – f1e4c885dafcefa744903b754176bcc4
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, botnet:pub1, backdoor, clipper, discovery, persistence, ransomware, stealer, trojanMD5: f1e4c885dafcefa744903b754176bcc4SHA1: d99b344444ad7d5cd8a4fd9b1b1a2748ad280322ANALYSIS...
Malware Analysis – dcrat – ec50388a69792d133c1298e1dceb40a6
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, evasion, infostealer, ransomware, rat, themida, trojanMD5: ec50388a69792d133c1298e1dceb40a6SHA1: 80ff3e79bc0679a0e2e91e811310e9fe59c5fcdbANALYSIS DATE: 2023-03-13T09:36:30ZTTPS: T1112, T1012, T1082, T1088, T1089,...
Malware Analysis – ransomware – 3889c88a8631b7c4f3d7ac297bb76a69
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 3889c88a8631b7c4f3d7ac297bb76a69SHA1: ed79333db3358bc535bc746eeb93d4c079134998ANALYSIS DATE: 2023-03-13T09:06:36ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – f87bd479caea6029c599fe4df3f36c0e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: f87bd479caea6029c599fe4df3f36c0eSHA1: 56a1c32def74898306b92f5970bd3baf0bef6f7bANALYSIS DATE: 2023-03-13T09:31:07ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – ransomware – 7773c2640e291cb173cbb26808777209
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7773c2640e291cb173cbb26808777209SHA1: 39f2fa95b630435753175bcec2f4b9a3165c82abANALYSIS DATE: 2023-03-13T09:22:40ZTTPS: T1107, T1490, T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – faf77921b63e813ccc3e0327d290bcda
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: faf77921b63e813ccc3e0327d290bcdaSHA1: d378c133ee71f48cd948be709770c9f97d44dc13ANALYSIS DATE: 2023-03-13T10:11:48ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – 2fb4eb3d4977b5d8bdc1754e231cd3d1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 2fb4eb3d4977b5d8bdc1754e231cd3d1SHA1: aef4245a60ecc0ba7574da44e8ca8648242cc4f2ANALYSIS DATE: 2023-03-13T10:02:45ZTTPS: T1012, T1082, T1222, T1005,...
Malware Analysis – smokeloader – e8588889a5266696d152aefbe1003fb0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e8588889a5266696d152aefbe1003fb0SHA1: b274fff11a34d6d59772a71f6e58ed3b640fc126ANALYSIS DATE: 2023-03-13T10:18:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 9d6ff2888873db3abeb35ce55ab7f159
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 9d6ff2888873db3abeb35ce55ab7f159SHA1: 7fddb0ea73306c67fba2c91b71c9de6df0904692ANALYSIS DATE: 2023-03-13T09:46:31ZTTPS: T1082, T1012, T1060, T1112,...
Malware Analysis – djvu – 7b98163456bd1a3effd8d1e5ef64298b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 7b98163456bd1a3effd8d1e5ef64298bSHA1: 6694db078af630fab3ae2e86f1ae5f1b6ddc39cdANALYSIS DATE: 2023-03-13T10:44:00ZTTPS: T1012, T1005, T1081, T1060,...
Malware Analysis – smokeloader – 566aed1f7c190b04471e2aec95e56c01
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 566aed1f7c190b04471e2aec95e56c01SHA1: 6f1f8a555cd88083de606e924ff6c665b3a43413ANALYSIS DATE: 2023-03-13T10:43:50ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – b3843723c9238af6d0c2a5d93305eadc
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: b3843723c9238af6d0c2a5d93305eadcSHA1: 3796a64fe59ada4167e5c9cb9b60897a36f3eed5ANALYSIS DATE: 2023-03-13T10:52:55ZTTPS: T1060, T1012, T1120, T1082, T1112, T1042 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – c6cd667d13846d0fb443c136e5e3f1a6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: c6cd667d13846d0fb443c136e5e3f1a6SHA1: 8b3d3ce0928da0914930779e2ef225d2caa148f7ANALYSIS DATE: 2023-03-13T10:44:35ZTTPS: T1222, T1082, T1053, T1005,...
Malware Analysis – evasion – f7cbc00aaa716599bcf6a24f65b3302e
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: f7cbc00aaa716599bcf6a24f65b3302eSHA1: ea2d7a7b46c02a406fc2c0e9340e2ca3f82339e3ANALYSIS DATE: 2023-03-13T11:06:16ZTTPS: T1031, T1562, T1489, T1112, T1012, T1082, T1120, T1107, T1490 ScoreMeaningExample10Known...
Malware Analysis – smokeloader – d21e88369dc69042d256dc59263d5b61
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: d21e88369dc69042d256dc59263d5b61SHA1: 575e789b0b3bc16a4f44fe6151af4d41cfd630b5ANALYSIS DATE: 2023-03-13T10:54:58ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 7e295e95ecb478810238bf9426635ad2
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:pseudomanuscrypt, family:redline, family:smokeloader, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, botnet:pub1, backdoor, clipper, discovery, infostealer, loader, persistence, ransomware,...
Malware Analysis – djvu – d310a6f0d6695c5db6467b8cc7a869fd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: d310a6f0d6695c5db6467b8cc7a869fdSHA1: 27e98c3c5339891cb03b3e84b81651ff04a62508ANALYSIS DATE: 2023-03-13T10:57:02ZTTPS: T1222, T1082, T1012, T1130,...
Malware Analysis – dharma – 99c451001b4a530a578952665ec526be
Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 99c451001b4a530a578952665ec526beSHA1: 6fb938ac4f76843d4ff37fc9d822f76a86f7feb2ANALYSIS DATE: 2023-03-13T11:09:04ZTTPS: T1107, T1490, T1060, T1112, T1005, T1081, T1082...
Malware Analysis – chaos – 61d14b682f39e6558a706a3dacafaeca
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomwareMD5: 61d14b682f39e6558a706a3dacafaecaSHA1: bcc32366f6b98f0fbd474643fa54c5a4ff173dfaANALYSIS DATE: 2023-03-13T11:09:04ZTTPS: T1490, T1059, T1107, T1082, T1012 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 61ba3dae1a44c36309224d931ac995d1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 61ba3dae1a44c36309224d931ac995d1SHA1: 36aae6b91d3d110199b4c89168d0a0f4c98e387fANALYSIS DATE: 2023-03-13T11:22:22ZTTPS: T1005, T1081, T1060, T1112,...
