CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Security
CISA: CISA Requests for Comment on Secure Software Self-Attestation Form
CISA Requests for Comment on Secure Software Self-Attestation Form CISA has issued requests for comment on the Secure Software Self-Attestation...
Cobalt Stike Beacon Detected – 175[.]178[.]26[.]48:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]255[.]45[.]211:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 118[.]24[.]216[.]113:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]24[.]207[.]93:9080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]247[.]9[.]220:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]202[.]169:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]101[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]46[.]190[.]21:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Teler-Waf – A Go HTTP Middleware That Provides Teler IDS Functionality To Protect Against Web-Based Attacks And Improve The Security Of Go-based Web Applications
teler-waf is a comprehensive security solution for Go-based web applications. It acts as an HTTP middleware, providing an easy-to-use interface...
Malware Analysis – amadey – 2cd1278453b56dd0a5f0fa7e6d2a7866
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 2cd1278453b56dd0a5f0fa7e6d2a7866SHA1:...
Malware Analysis – xworm – 60756214f351f2d6d1a2cb89dc9853b5
Score: 10 MALWARE FAMILY: xwormTAGS:family:xworm, persistence, ransomware, rat, trojanMD5: 60756214f351f2d6d1a2cb89dc9853b5SHA1: 8c478657c1cce1906a72526ed231083ce5a9bed1ANALYSIS DATE: 2023-05-04T15:20:25ZTTPS: T1082, T1053, T1060, T1112, T1012, T1491 ScoreMeaningExample10Known...
Malware Analysis – djvu – 2ce0cb2c47637c78cb7cd07af95d912d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 2ce0cb2c47637c78cb7cd07af95d912dSHA1: 21c6c43aced8e765ee47043dbe1f90d9e213bf7dANALYSIS DATE: 2023-05-04T15:15:00ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – bootkit – 00f570c756caab8c20ecabdc996c69d3
Score: 8 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, exploit, persistence, upxMD5: 00f570c756caab8c20ecabdc996c69d3SHA1: 88d2f10c67a4566478e9b2ceddd52cac9b5fdb3bANALYSIS DATE: 2023-05-04T16:18:07ZTTPS: T1222, T1112, T1067, T1012, T1082, T1060,...
Malware Analysis – bootkit – 5d6c95558f08c90419758761bf4ab83d
Score: 10 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, evasion, persistence, ransomware, trojanMD5: 5d6c95558f08c90419758761bf4ab83dSHA1: 7fd6074f848d83879ce2246f4cfc98266043ddafANALYSIS DATE: 2023-05-04T16:07:05ZTTPS: T1012, T1067, T1053, T1060, T1112, T1031,...
Malware Analysis – djvu – 65178f6a1891f152c05326a628e6fa3a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 65178f6a1891f152c05326a628e6fa3aSHA1: 6a9b6ab36f14db9948e988c68d1b91d733315578ANALYSIS DATE: 2023-05-04T16:10:23ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – amadey – 325cca727c1640e9c911a5f45fbc397b
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 325cca727c1640e9c911a5f45fbc397bSHA1:...
Malware Analysis – persistence – 8ea203015739494c182dcf1b5289aa60
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 8ea203015739494c182dcf1b5289aa60SHA1: f6c99e81222a9bffad9aa3893980240f507b4e63ANALYSIS DATE: 2023-05-04T16:29:48ZTTPS: T1082, T1060, T1112, T1491, T1012, T1053 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 20f799deca580973c2fb2516421bf5ee
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 20f799deca580973c2fb2516421bf5eeSHA1: 04ce89b9ef62714eb0d8d07cc18347ef34b4d7ccANALYSIS DATE: 2023-05-04T17:52:15ZTTPS: T1005, T1081, T1053, T1012,...
Malware Analysis – evasion – 0df6a3da3b4eb4def6eb111b2dd01a20
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 0df6a3da3b4eb4def6eb111b2dd01a20SHA1: 41d9bebe4d89458709ce7d0407f0a551110f3cb0ANALYSIS DATE: 2023-05-04T16:35:55ZTTPS: T1082, T1012, T1120, T1031, T1491, T1112, T1060, T1130, T1018...
Malware Analysis – evasion – ba5500e35710c6221dbd322e46d80db6
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ba5500e35710c6221dbd322e46d80db6SHA1: da2e8153dc88ffb30d8f0510665cfd93993d2ad2ANALYSIS DATE: 2023-05-04T17:00:16ZTTPS: T1082, T1012, T1491, T1112, T1120, T1102 ScoreMeaningExample10Known badA malware family...
Cobalt Stike Beacon Detected – 101[.]42[.]17[.]226:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 211[.]193[.]21[.]161:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
