Security

Cobalt Stike Beacon Detected – 109[.]172[.]45[.]28:443

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 54[.]188[.]58[.]32:443

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 3[.]29[.]24[.]212:8080

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – – bfe6ee8069f6e7c572382a97fd16d104

January 29, 2023

Score: 3 MALWARE FAMILY: TAGS:MD5: bfe6ee8069f6e7c572382a97fd16d104SHA1: e017c8f52a53cd0374d7867af14e567b79d6cffdANALYSIS DATE: 2023-01-29T11:33:49ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – discovery – 360ef53ce1b09b03998bf2ab743f7dc7

January 29, 2023

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomware, spyware, stealerMD5: 360ef53ce1b09b03998bf2ab743f7dc7SHA1: 9166c3760b1d1cf9a395e344858e4e01158795bcANALYSIS DATE: 2023-01-29T11:09:44ZTTPS: T1060, T1012, T1005, T1081, T1082, T1059, T1102,...

Malware Analysis – smokeloader – da627411e7e85229355ed325520a7d4e

January 29, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: da627411e7e85229355ed325520a7d4eSHA1: 3a603f52b7285be51b1533815eecc67b0447af35ANALYSIS DATE: 2023-01-29T11:35:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Cobalt Stike Beacon Detected – 20[.]189[.]74[.]59:8443

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – spyware – 5e887fdac8a3cac0b047a737043789a8

January 29, 2023

Score: 7 MALWARE FAMILY: spywareTAGS:spyware, stealerMD5: 5e887fdac8a3cac0b047a737043789a8SHA1: 8c9745138d835b783278cb61170a7153bb003784ANALYSIS DATE: 2023-01-29T11:17:02ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – smokeloader – a36b584de10085f700f75c6f21620bd2

January 29, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a36b584de10085f700f75c6f21620bd2SHA1: 8c8006245b3be3a36dfebeab999d8d01826cbe1cANALYSIS DATE: 2023-01-29T03:25:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – cce7765c14bdcec1e907d013a875be01

January 29, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: cce7765c14bdcec1e907d013a875be01SHA1: 776c2ab297b6a69ce27041b748413bd25133030eANALYSIS DATE: 2023-01-29T03:01:08ZTTPS: T1082, T1053, T1005, T1081,...

Malware Analysis – chaos – cc4c6842f8a31ee3ac6477b42d34acba

January 29, 2023

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, persistence, ransomware, spyware, stealerMD5: cc4c6842f8a31ee3ac6477b42d34acbaSHA1: ce6e9918189e9187143e0e012356bec98988c035ANALYSIS DATE: 2023-01-29T05:22:04ZTTPS: T1005, T1081, T1082, T1060, T1112 ScoreMeaningExample10Known badA...

Malware Analysis – djvu – 5b1d27c0cc55349def2cd69b3d33fdd9

January 29, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 5b1d27c0cc55349def2cd69b3d33fdd9SHA1: 20e54017c0112e97fdf95c1d46801a5b6c0e5c2cANALYSIS DATE: 2023-01-29T05:03:58ZTTPS: T1060, T1112, T1012, T1082,...

Malware Analysis – djvu – 376a3ccb90224d2ad5712bf04c0b9578

January 29, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:19, botnet:@2023@new, backdoor, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 376a3ccb90224d2ad5712bf04c0b9578SHA1:...

Malware Analysis – smokeloader – 0188b2bb7e59afd6100b75775561f073

January 29, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0188b2bb7e59afd6100b75775561f073SHA1: c29f3865c7e5dcbc53535eec9906f992153c7227ANALYSIS DATE: 2023-01-29T04:16:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – chaos – 3fdd9b2402350844b482aa6076e18d22

January 29, 2023

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: 3fdd9b2402350844b482aa6076e18d22SHA1: 81034b4deb144ecdf21cb213e455a84ea319812cANALYSIS DATE: 2023-01-29T05:23:06ZTTPS: T1490, T1059, T1107, T1005, T1081, T1491, T1112,...

Malware Analysis – chaos – d80c38192b6a2eb32833de68de263c66

January 29, 2023

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: d80c38192b6a2eb32833de68de263c66SHA1: c896d5f151481f5b4078f7ff67f3957abb9d97b8ANALYSIS DATE: 2023-01-29T05:23:03ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – chaos – 99cc504910231308cd759c3c0b1a00ac

January 29, 2023

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: 99cc504910231308cd759c3c0b1a00acSHA1: f884e5fcd3da589a0ee6036cb970e704cf511599ANALYSIS DATE: 2023-01-29T05:24:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – lockbit – 2525d5867b27f5ee3949880186c35ed7

January 29, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 2525d5867b27f5ee3949880186c35ed7SHA1: 8fc6dd893d10eb3f4d7c06fda1d3e05a8c7ba8adANALYSIS DATE: 2023-01-29T05:23:02ZTTPS: T1490, T1046, T1082, T1107, T1060, T1112 ScoreMeaningExample10Known...

Malware Analysis – ransomware – f1c1bb775bdefa793a8c6add1e10ab04

January 29, 2023

Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f1c1bb775bdefa793a8c6add1e10ab04SHA1: beacb14113de8642e32b0ebbc41e3eb4a6146548ANALYSIS DATE: 2023-01-28T21:06:36ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Cobalt Stike Beacon Detected – 107[.]189[.]28[.]121:443

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]143[.]211[.]165:801

January 29, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – 82fddf18257b88127a7ec61e79a5208a

January 29, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 82fddf18257b88127a7ec61e79a5208aSHA1: 3733c9040487eb9b815da7d6b0fac4c1ff47c297ANALYSIS DATE: 2023-01-28T21:31:16ZTTPS: T1060, T1112, T1053, T1012,...

Malware Analysis – – 8d7df991938615da66351c6ff74b9d3d

January 29, 2023

Score: 1 MALWARE FAMILY: TAGS:MD5: 8d7df991938615da66351c6ff74b9d3dSHA1: c578d96f7a34816ba3b2cf2ace512e9d0da9e437ANALYSIS DATE: 2023-01-28T21:21:33ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – discovery – 93dc9f86cc0b02d0c89599099447ab86

January 29, 2023

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 93dc9f86cc0b02d0c89599099447ab86SHA1: 2536fa3fdbf311fa0bfb8e7a7c1851b547c65935ANALYSIS DATE: 2023-01-28T22:37:32ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Security

Cobalt Stike Beacon Detected – 109[.]172[.]45[.]28:443

Cobalt Stike Beacon Detected – 54[.]188[.]58[.]32:443

Cobalt Stike Beacon Detected – 3[.]29[.]24[.]212:8080

Malware Analysis – – bfe6ee8069f6e7c572382a97fd16d104

Malware Analysis – discovery – 360ef53ce1b09b03998bf2ab743f7dc7

Malware Analysis – smokeloader – da627411e7e85229355ed325520a7d4e

Cobalt Stike Beacon Detected – 20[.]189[.]74[.]59:8443

Malware Analysis – spyware – 5e887fdac8a3cac0b047a737043789a8

Malware Analysis – smokeloader – a36b584de10085f700f75c6f21620bd2

Malware Analysis – djvu – cce7765c14bdcec1e907d013a875be01

Malware Analysis – chaos – cc4c6842f8a31ee3ac6477b42d34acba

Malware Analysis – djvu – 5b1d27c0cc55349def2cd69b3d33fdd9

Malware Analysis – djvu – 376a3ccb90224d2ad5712bf04c0b9578

Malware Analysis – smokeloader – 0188b2bb7e59afd6100b75775561f073

Malware Analysis – chaos – 3fdd9b2402350844b482aa6076e18d22

Malware Analysis – chaos – d80c38192b6a2eb32833de68de263c66

Malware Analysis – chaos – 99cc504910231308cd759c3c0b1a00ac

Malware Analysis – lockbit – 2525d5867b27f5ee3949880186c35ed7

Malware Analysis – ransomware – f1c1bb775bdefa793a8c6add1e10ab04

Cobalt Stike Beacon Detected – 107[.]189[.]28[.]121:443

Cobalt Stike Beacon Detected – 43[.]143[.]211[.]165:801

Malware Analysis – djvu – 82fddf18257b88127a7ec61e79a5208a

Malware Analysis – – 8d7df991938615da66351c6ff74b9d3d

Malware Analysis – discovery – 93dc9f86cc0b02d0c89599099447ab86

Cobalt Strike Beacon Detected – 74[.]176[.]106[.]50:443

Cobalt Strike Beacon Detected – 193[.]42[.]60[.]108:443

CISA: CISA Releases Eight Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

You may have missed