Security

Cobalt Stike Beacon Detected – 45[.]124[.]112[.]142:86

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Bkcrack – Crack Legacy Zip Encryption With Biham And Kocher’s Known Plaintext Attack

January 13, 2023

Crack legacy zip encryption with Biham and Kocher's known plaintext attack. Overview A ZIP archive may contain many entries whose...

Malware Analysis – evasion – 19944159dfa94a1b75effd85e6b906dc

January 13, 2023

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 19944159dfa94a1b75effd85e6b906dcSHA1: 250acf87366f4c0cf91679a0e93dfc79954f0f10ANALYSIS DATE: 2023-01-13T09:23:05ZTTPS: T1490, T1107, T1012, T1120, T1082, T1491, T1112 ScoreMeaningExample10Known badA malware...

Malware Analysis – djvu – 05c674c2eaea162ee88982395a684968

January 13, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 05c674c2eaea162ee88982395a684968SHA1: 135dac8a95134eeca5d84201448f4f633ea7f865ANALYSIS DATE: 2023-01-13T10:06:04ZTTPS: T1130, T1112, T1060, T1222, T1082...

Cobalt Stike Beacon Detected – 52[.]43[.]159[.]70:443

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 104[.]168[.]135[.]151:2083

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 101[.]34[.]76[.]186:443

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 54[.]88[.]53[.]17:80

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – 17b59c81fe6a8a821facdb5a071eeded

January 13, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 17b59c81fe6a8a821facdb5a071eededSHA1: 5958d905895542615f5e024ad18ea1321fcb4e78ANALYSIS DATE: 2023-01-13T10:35:33ZTTPS: T1053, T1012, T1005, T1081,...

Malware Analysis – lockbit – 3e5b053a4107e00029a9ea5f5e282a00

January 13, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, ransomwareMD5: 3e5b053a4107e00029a9ea5f5e282a00SHA1: 4edad45f0b395f5898cefa82adb3606e371f6d60ANALYSIS DATE: 2023-01-13T10:39:47ZTTPS: T1491, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – djvu – c23fe1948b4258f39114c730c04a2b9f

January 13, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c23fe1948b4258f39114c730c04a2b9fSHA1: cffb7436ff0867e5c492d301044b0e55620b428bANALYSIS DATE: 2023-01-13T10:36:52ZTTPS: T1053,...

Malware Analysis – evasion – 0d11e3db3bfdf788d51666e3374cba05

January 13, 2023

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 0d11e3db3bfdf788d51666e3374cba05SHA1: a20e2ca578289c6b32d74698f356242e7564dca1ANALYSIS DATE: 2023-01-13T10:23:22ZTTPS: T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – dharma – b178705190001fcb012000eed9ba33d2

January 13, 2023

Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: b178705190001fcb012000eed9ba33d2SHA1: db6d85f58ad3e6ebb62d92be1dbe7741023a1e7bANALYSIS DATE: 2023-01-13T11:07:24ZTTPS: T1005, T1081, T1060, T1112, T1107, T1490, T1082...

Malware Analysis – dharma – a6de0d47bb017e59aefec6f4b00c2157

January 13, 2023

Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: a6de0d47bb017e59aefec6f4b00c2157SHA1: a71fe7dc24be53aac39771bcddaa4654fca2a26aANALYSIS DATE: 2023-01-13T10:57:53ZTTPS: T1005, T1081, T1112, T1060, T1107, T1490, T1082...

Malware Analysis – dharma – 9220abc8a4ead7e58bc51c54d1c8343b

January 13, 2023

Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 9220abc8a4ead7e58bc51c54d1c8343bSHA1: 9a9c96e8d20137c0fc05e47a51f4b05383c9b08dANALYSIS DATE: 2023-01-13T10:49:17ZTTPS: T1060, T1112, T1107, T1490, T1082, T1005, T1081...

Malware Analysis – dharma – b51dc59f86a48c129a128e04b7444c94

January 13, 2023

Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: b51dc59f86a48c129a128e04b7444c94SHA1: a243e2ccfad5f60e505e631626cd72fb0e535907ANALYSIS DATE: 2023-01-13T11:02:01ZTTPS: T1060, T1112, T1107, T1490, T1005, T1081, T1082...

Cobalt Stike Beacon Detected – 107[.]174[.]247[.]46:9443

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 107[.]172[.]206[.]242:443

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 194[.]55[.]186[.]206:8011

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]143[.]213[.]120:443

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – glupteba – 35dc42a422a763d61cdf19cee9b5f48a

January 13, 2023

Score: 10 MALWARE FAMILY: gluptebaTAGS:family:glupteba, family:redline, botnet:bharat, discovery, dropper, evasion, infostealer, loader, persistence, ransomware, trojan, vmprotectMD5: 35dc42a422a763d61cdf19cee9b5f48aSHA1: b2f51efcd7dc3f8a10d0362890c392757596222aANALYSIS DATE: 2023-01-12T21:04:56ZTTPS:...

Malware Analysis – quasar – 214bb6347cffeb07969a31d0cc01c0c9

January 13, 2023

Score: 10 MALWARE FAMILY: quasarTAGS:family:quasar, evasion, persistence, ransomware, spyware, trojanMD5: 214bb6347cffeb07969a31d0cc01c0c9SHA1: a473b46a2a03a9b36925175ddc2598810a1bf3a5ANALYSIS DATE: 2023-01-12T21:54:40ZTTPS: T1082, T1112, T1060, T1130, T1102, T1107,...

Malware Analysis – sodinokibi – 8a7c7ef298134fbb1dc660e3ce11897e

January 13, 2023

Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:5, campaign:367, ransomware, spyware, stealerMD5: 8a7c7ef298134fbb1dc660e3ce11897eSHA1: 759324cde77d121bea646bb5b14a10cb6e90cf70ANALYSIS DATE: 2023-01-12T20:44:42ZTTPS: T1107, T1490, T1491, T1112, T1130, T1012,...

Cobalt Stike Beacon Detected – 5[.]188[.]86[.]194:88

January 13, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Security

Cobalt Stike Beacon Detected – 45[.]124[.]112[.]142:86

Bkcrack – Crack Legacy Zip Encryption With Biham And Kocher’s Known Plaintext Attack

Malware Analysis – evasion – 19944159dfa94a1b75effd85e6b906dc

Malware Analysis – djvu – 05c674c2eaea162ee88982395a684968

Cobalt Stike Beacon Detected – 52[.]43[.]159[.]70:443

Cobalt Stike Beacon Detected – 104[.]168[.]135[.]151:2083

Cobalt Stike Beacon Detected – 101[.]34[.]76[.]186:443

Cobalt Stike Beacon Detected – 54[.]88[.]53[.]17:80

Malware Analysis – djvu – 17b59c81fe6a8a821facdb5a071eeded

Malware Analysis – lockbit – 3e5b053a4107e00029a9ea5f5e282a00

Malware Analysis – djvu – c23fe1948b4258f39114c730c04a2b9f

Malware Analysis – evasion – 0d11e3db3bfdf788d51666e3374cba05

Malware Analysis – dharma – b178705190001fcb012000eed9ba33d2

Malware Analysis – dharma – a6de0d47bb017e59aefec6f4b00c2157

Malware Analysis – dharma – 9220abc8a4ead7e58bc51c54d1c8343b

Malware Analysis – dharma – b51dc59f86a48c129a128e04b7444c94

Cobalt Stike Beacon Detected – 107[.]174[.]247[.]46:9443

Cobalt Stike Beacon Detected – 107[.]172[.]206[.]242:443

Cobalt Stike Beacon Detected – 194[.]55[.]186[.]206:8011

Cobalt Stike Beacon Detected – 43[.]143[.]213[.]120:443

Malware Analysis – glupteba – 35dc42a422a763d61cdf19cee9b5f48a

Malware Analysis – quasar – 214bb6347cffeb07969a31d0cc01c0c9

Malware Analysis – sodinokibi – 8a7c7ef298134fbb1dc660e3ce11897e

Cobalt Stike Beacon Detected – 5[.]188[.]86[.]194:88

CVE Alert: CVE-2025-23115

CVE Alert: CVE-2024-13358

CVE Alert: CVE-2024-13568

CVE Alert: CVE-2024-13518

CVE Alert: CVE-2025-1780

You may have missed