Cobalt Stike Beacon Detected – 209[.]141[.]54[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Malware Analysis – sodinokibi – fb9d11c5ff87dd9071ab44f4c562ca3e
Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:5, campaign:367, ransomwareMD5: fb9d11c5ff87dd9071ab44f4c562ca3eSHA1: 1e383b22a38c91373ba446a820d61883f282cb3eANALYSIS DATE: 2023-01-10T21:26:48ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 429f28184209bae8fde861606d5ec96f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 429f28184209bae8fde861606d5ec96fSHA1: cc0ac6987925c5e19f894e19e0a21afbd7440657ANALYSIS DATE: 2023-01-10T21:03:39ZTTPS: T1012, T1005, T1081, T1222,...
Malware Analysis – ransomware – d0dc1a6edd8ebd71b57770d1e38ea8e0
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d0dc1a6edd8ebd71b57770d1e38ea8e0SHA1: 0d4f1c6aebeae7542de3964709312752a2ecb0a4ANALYSIS DATE: 2023-01-10T20:44:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – f8ad7ea13f1df856f9f35534b6f7ee00
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: f8ad7ea13f1df856f9f35534b6f7ee00SHA1: ef4321d51ef1bd2b8c233af61e92416605ddd0ddANALYSIS DATE: 2023-01-10T21:23:38ZTTPS: T1012, T1082, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:3002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:3301
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:22222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:9000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – aurora – 65d7785d36337dccd3f85dbe8c0358e5
Score: 10 MALWARE FAMILY: auroraTAGS:family:aurora, family:dcrat, family:djvu, family:icedid, family:smokeloader, family:vidar, botnet:19, campaign:3131022508, backdoor, banker, collection, discovery, infostealer, loader, persistence, ransomware,...
Malware Analysis – djvu – 10175425e3f29ba4e7637074ed2c8e26
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 10175425e3f29ba4e7637074ed2c8e26SHA1: abbaaf366d8dc619bccb1228a3829101767518cfANALYSIS DATE: 2023-01-10T21:31:59ZTTPS: T1060, T1112, T1082, T1005,...
Malware Analysis – sodinokibi – 61c19e7ce627da9b5004371f867a47d3
Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:5, campaign:367, ransomwareMD5: 61c19e7ce627da9b5004371f867a47d3SHA1: 4f3b4329871ec269043068a98e9cc929f603268dANALYSIS DATE: 2023-01-10T21:37:31ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – evasion – e43320002eb47ce45a5092c9fdb9c7d2
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: e43320002eb47ce45a5092c9fdb9c7d2SHA1: faede3fe537f629eb592d4ec7793fff2e2ee37abANALYSIS DATE: 2023-01-10T21:45:37ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 45[.]61[.]187[.]167:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]154[.]182[.]95:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]234[.]152[.]199:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]55[.]2[.]194:2095
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – bc6bf8643541163f1736566a6a9e6011
Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: bc6bf8643541163f1736566a6a9e6011SHA1: cc7f21a3779f904d0c5fe0c2c44fc7fb8d2de728ANALYSIS DATE: 2023-01-10T22:17:01ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – b40a2374b51d487190fe535bb651aa3a
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b40a2374b51d487190fe535bb651aa3aSHA1: 23213f8f9ee58c3166101af2869783c90dfdff14ANALYSIS DATE: 2023-01-10T21:53:08ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 15165436db5835fc6ecda43762014f75
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 15165436db5835fc6ecda43762014f75SHA1: 5c972fe82e246daca2c18b5da6f4e521e56c96a2ANALYSIS DATE: 2023-01-10T22:09:38ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 5f69049eee4cd4263041956448b9ee95
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 5f69049eee4cd4263041956448b9ee95SHA1: e2f3a6f94375f30f9a6a155c3cb07493cff90799ANALYSIS DATE: 2023-01-10T22:22:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
CISA: Microsoft Releases January 2023 Security Updates
Microsoft Releases January 2023 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker could...
Malware Analysis – aurora – 263e8add132946de46d9bf90aa19c401
Score: 10 MALWARE FAMILY: auroraTAGS:family:aurora, family:dcrat, family:djvu, family:icedid, family:smokeloader, family:vidar, botnet:19, campaign:3131022508, backdoor, banker, discovery, infostealer, loader, persistence, ransomware, rat,...
Malware Analysis – djvu – 920842b983c4051efa27387e1edfeb6b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 920842b983c4051efa27387e1edfeb6bSHA1: 114105f6680c70344a80486e11b9479117f08613ANALYSIS DATE: 2023-01-10T23:47:26ZTTPS: T1060, T1112, T1222, T1082,...
