Security

Cobalt Stike Beacon Detected – 1[.]13[.]165[.]208:2083

March 2, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – 1c427725498bb3ab7b117dcc5ca66a25

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 1c427725498bb3ab7b117dcc5ca66a25SHA1: 4f9a1b41cf9cb305deb7291d40b9b1b956a3bcbdANALYSIS DATE: 2023-03-02T10:58:35ZTTPS: T1012, T1082, T1060, T1112, T1053,...

Malware Analysis – djvu – c977c86357445262618d0b6a86852ec8

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c977c86357445262618d0b6a86852ec8SHA1: da83fcb9d8954b4360b07cbcd175cc4000794711ANALYSIS DATE: 2023-03-02T10:41:03ZTTPS: T1012, T1082,...

Malware Analysis – djvu – 5b9f667cb4ff77aea6c54982aa6caf28

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojanMD5: 5b9f667cb4ff77aea6c54982aa6caf28SHA1: 03e40c798ef1960543697fb49b93cb5e128f4e00ANALYSIS DATE: 2023-03-02T11:25:22ZTTPS: T1012, T1120, T1082,...

Malware Analysis – djvu – 0ef58a88d61923cb849928dacba896fd

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 0ef58a88d61923cb849928dacba896fdSHA1: 0ec26137cb58c38270ab84322e981b5c28918f54ANALYSIS DATE: 2023-03-02T10:45:34ZTTPS: T1222, T1005, T1081, T1012, T1060,...

Malware Analysis – djvu – 6734fa8c61596e7943f5f21a7826ea50

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojanMD5: 6734fa8c61596e7943f5f21a7826ea50SHA1: f01d350779e9a8259bb0d615002307fcbfe618e1ANALYSIS DATE: 2023-03-02T04:08:19ZTTPS: T1012, T1082, T1120,...

Malware Analysis – asyncrat – fb14b42cf21c9a8d2e0780747d20b64a

March 2, 2023

Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, evasion, rat, themida, trojanMD5: fb14b42cf21c9a8d2e0780747d20b64aSHA1: 462bdf4847340a4da583a0321bc8efc5819de8f6ANALYSIS DATE: 2023-03-02T04:22:17ZTTPS: T1082, T1012, T1497 ScoreMeaningExample10Known badA malware family...

Malware Analysis – djvu – f448b1e332b316521904e002e3947774

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: f448b1e332b316521904e002e3947774SHA1: ecb650c25c40e5cd76198f469d08f3b6a82b61f0ANALYSIS DATE: 2023-03-02T04:46:36ZTTPS: T1005, T1081, T1060, T1112, T1222,...

Malware Analysis – ransomware – 3385773c615affb24f66c5894f257bbc

March 2, 2023

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 3385773c615affb24f66c5894f257bbcSHA1: a6a57fa162e552f011970a5a01c2a1450a5ae4f3ANALYSIS DATE: 2023-03-02T04:43:50ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 8e85fe825200719b9eb15275b12fd368

March 2, 2023

Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 8e85fe825200719b9eb15275b12fd368SHA1: 4425666e39ff70513640d8f0b3a320fdc5100cf5ANALYSIS DATE: 2023-03-02T05:23:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – djvu – d6afa8fdf867890a84baf35b18cc1c1c

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: d6afa8fdf867890a84baf35b18cc1c1cSHA1: 1a7da78728b9e47309a84bed604a0eb4974c34ceANALYSIS DATE: 2023-03-02T05:00:11ZTTPS: T1222, T1082, T1012, T1005, T1081,...

Malware Analysis – djvu – 28beebe57db41c975b328a487beba33a

March 2, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, persistence, ransomware, stealer, trojanMD5: 28beebe57db41c975b328a487beba33aSHA1: 1827147c4ef25a00bdf81b4184bc491ba6fb2bdaANALYSIS DATE: 2023-03-02T05:32:16ZTTPS: T1222, T1053, T1060,...

Malware Analysis – ransomware – 7d1cf6af55e3579725f16724463201c3

March 2, 2023

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7d1cf6af55e3579725f16724463201c3SHA1: 53788e49d16137b86c90ed906969c52c8a18b26dANALYSIS DATE: 2023-03-02T05:43:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Security

Cobalt Stike Beacon Detected – 1[.]13[.]165[.]208:2083

Malware Analysis – djvu – 1c427725498bb3ab7b117dcc5ca66a25

Malware Analysis – djvu – c977c86357445262618d0b6a86852ec8

Malware Analysis – djvu – 5b9f667cb4ff77aea6c54982aa6caf28

Malware Analysis – djvu – 0ef58a88d61923cb849928dacba896fd

Malware Analysis – djvu – 6734fa8c61596e7943f5f21a7826ea50

Malware Analysis – asyncrat – fb14b42cf21c9a8d2e0780747d20b64a

Malware Analysis – djvu – f448b1e332b316521904e002e3947774

Malware Analysis – ransomware – 3385773c615affb24f66c5894f257bbc

Malware Analysis – ransomware – 8e85fe825200719b9eb15275b12fd368

Malware Analysis – djvu – d6afa8fdf867890a84baf35b18cc1c1c

Malware Analysis – djvu – 28beebe57db41c975b328a487beba33a

Malware Analysis – ransomware – 7d1cf6af55e3579725f16724463201c3

Cobalt Stike Beacon Detected – 47[.]242[.]72[.]118:80

Cobalt Stike Beacon Detected – 218[.]11[.]133[.]33:8805

Cobalt Stike Beacon Detected – 47[.]88[.]88[.]59:8090

Cobalt Stike Beacon Detected – 89[.]117[.]113[.]193:8765

Cobalt Stike Beacon Detected – 104[.]225[.]147[.]227:8080

Cobalt Stike Beacon Detected – 157[.]245[.]202[.]4:8443

Cobalt Stike Beacon Detected – 43[.]142[.]47[.]213:4433

Cobalt Stike Beacon Detected – 54[.]238[.]255[.]15:443

Cobalt Stike Beacon Detected – 54[.]250[.]65[.]5:80

Cobalt Stike Beacon Detected – 147[.]78[.]47[.]209:80

Cobalt Stike Beacon Detected – 129[.]211[.]214[.]232:443

[AKIRA] – Ransomware Victim: MNJ Technologies Direct

[MORPHEUS] – Ransomware Victim: Dinizulu Law Group LTD

[CLOAK] – Ransomware Victim: ba**********[.]org

CVE Alert: CVE-2025-27355

CVE Alert: CVE-2025-27340

You may have missed