Security

Cobalt Stike Beacon Detected – 84[.]32[.]191[.]131:443

December 18, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – c10db6b82a25aea13403618169daf2b4

December 18, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: c10db6b82a25aea13403618169daf2b4SHA1: e6079184cec5366be1d581b8b8cfe26e786c2da6ANALYSIS DATE: 2022-12-18T09:11:50ZTTPS: T1012, T1082, T1053, T1005, T1081, T1222,...

Malware Analysis – djvu – 7f1463076388a2f31943ecbf984b82ad

December 18, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 7f1463076388a2f31943ecbf984b82adSHA1: 912091744c8083ace3d8ccc8f941d1ee857af913ANALYSIS DATE: 2022-12-18T09:33:09ZTTPS: T1012, T1222, T1082, T1053, T1005, T1081,...

Malware Analysis – djvu – 1f251fecef351df9530bb76b5044e2d3

December 18, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 1f251fecef351df9530bb76b5044e2d3SHA1: 92436cc6ac90ad654da9218a948cd39e639a549eANALYSIS DATE: 2022-12-18T11:33:44ZTTPS: T1012, T1082, T1005, T1081, T1060, T1112,...

Malware Analysis – chaos – dd6b2c4c8aa41639409f24413a3c5879

December 18, 2022

Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: dd6b2c4c8aa41639409f24413a3c5879SHA1: 4ae29959377d36544a7207c5a140bfff56c7fb82ANALYSIS DATE: 2022-12-18T11:58:03ZTTPS: T1490, T1059, T1107, T1082, T1491, T1112, T1005,...

Malware Analysis – discovery – d02471d0ef2001a21b2d77ac7604cfa1

December 18, 2022

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: d02471d0ef2001a21b2d77ac7604cfa1SHA1: 955db6ba1a2c8058be9240ee2c7ad8e83d38a2deANALYSIS DATE: 2022-12-18T10:04:40ZTTPS: T1082, T1112, T1042, T1060, T1012 ScoreMeaningExample10Known badA malware family...

Fire and rescue service in Victoria, Australia, confirms cyber attack

December 18, 2022

The fire and rescue service in the state of Victoria, Australia, has shut down its network and turned to operating...

Cobalt Stike Beacon Detected – 104[.]131[.]4[.]250:443

December 18, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 58[.]64[.]193[.]172:4443

December 18, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – b5b10439e00ff5bba11ffa1f9ca79cfa

December 18, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: b5b10439e00ff5bba11ffa1f9ca79cfaSHA1: 296aaee3553e4a4f25ec7a91979477c4a1df0981ANALYSIS DATE: 2022-12-17T21:47:40ZTTPS: T1060, T1112, T1222, T1082, T1005, T1081,...

Malware Analysis – djvu – ae433782ad5f0d406ed1e834b619db49

December 18, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: ae433782ad5f0d406ed1e834b619db49SHA1: 6a68cd89d719203eafa3abb3c1aa5cadde20a23bANALYSIS DATE: 2022-12-17T22:03:41ZTTPS: T1053, T1005, T1081, T1012, T1082, T1222,...

Samba addressed multiple high-severity vulnerabilities

December 17, 2022

Samba released updates to address multiple vulnerabilities that can be exploited to take control of impacted systems. Samba released updates...

Digital Binary Code on Dark Red Background. Data Breach

Gemini – 5,274,214 breached accounts

December 17, 2022

In late 2022, data allegedly taken from the Gemini crypto exchange was posted to a public hacking forum. The data...

Cobalt Stike Beacon Detected – 77[.]73[.]134[.]23:10443

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 47[.]98[.]221[.]192:666

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 138[.]197[.]0[.]238:443

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 20[.]204[.]47[.]86:80

December 17, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – 246ada05d6ce992e7db8c2fc65df33f3

December 17, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 246ada05d6ce992e7db8c2fc65df33f3SHA1: 91fe33f8825cc735717a0faa13a5902fd6d40bafANALYSIS DATE: 2022-12-17T09:20:24ZTTPS: T1005, T1081, T1060, T1112, T1222, T1082,...

Malware Analysis – danabot – 50795361db9455af2f85372f3cfe0a47

December 17, 2022

Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, banker, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware,...

Malware Analysis – djvu – 18f2a906eb2220e2b4ea8dfbebc2609e

December 17, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...

Malware Analysis – danabot – 5c6352790c02dc6c8de1cdf48a1d9759

December 17, 2022

Malware Analysis – djvu – 84ddcfcb55c1aa1dfdce65c841fd3193

December 17, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 84ddcfcb55c1aa1dfdce65c841fd3193SHA1: c88b590c9b54f72148143a68c09906ad93aa5904ANALYSIS DATE: 2022-12-17T11:42:22ZTTPS: T1005, T1081, T1222, T1053, T1012, T1082,...

Malware Analysis – danabot – 78198165b3be4f33987cf5601a5b6276

December 17, 2022

Malware Analysis – danabot – 2141c84aab4a7591fb50e4fd24a9c2a7

December 17, 2022

Security

Cobalt Stike Beacon Detected – 84[.]32[.]191[.]131:443

Malware Analysis – djvu – c10db6b82a25aea13403618169daf2b4

Malware Analysis – djvu – 7f1463076388a2f31943ecbf984b82ad

Malware Analysis – djvu – 1f251fecef351df9530bb76b5044e2d3

Malware Analysis – chaos – dd6b2c4c8aa41639409f24413a3c5879

Malware Analysis – discovery – d02471d0ef2001a21b2d77ac7604cfa1

Fire and rescue service in Victoria, Australia, confirms cyber attack

Cobalt Stike Beacon Detected – 104[.]131[.]4[.]250:443

Cobalt Stike Beacon Detected – 58[.]64[.]193[.]172:4443

Malware Analysis – djvu – b5b10439e00ff5bba11ffa1f9ca79cfa

Malware Analysis – djvu – ae433782ad5f0d406ed1e834b619db49

Samba addressed multiple high-severity vulnerabilities

Gemini – 5,274,214 breached accounts

Cobalt Stike Beacon Detected – 77[.]73[.]134[.]23:10443

Cobalt Stike Beacon Detected – 47[.]98[.]221[.]192:666

Cobalt Stike Beacon Detected – 138[.]197[.]0[.]238:443

Cobalt Stike Beacon Detected – 20[.]204[.]47[.]86:80

Malware Analysis – djvu – 246ada05d6ce992e7db8c2fc65df33f3

Malware Analysis – danabot – 50795361db9455af2f85372f3cfe0a47

Malware Analysis – djvu – 18f2a906eb2220e2b4ea8dfbebc2609e

Malware Analysis – danabot – 5c6352790c02dc6c8de1cdf48a1d9759

Malware Analysis – djvu – 84ddcfcb55c1aa1dfdce65c841fd3193

Malware Analysis – danabot – 78198165b3be4f33987cf5601a5b6276

Malware Analysis – danabot – 2141c84aab4a7591fb50e4fd24a9c2a7

[INCRANSOM] – Ransomware Victim: Naples Heritage Golf & Country Club

[LYNX] – Ransomware Victim: Dynamic Closures

[QILIN] – Ransomware Victim: Connekted, Inc[.]

[FOG] – Ransomware Victim: WJCC Public Schools (wjccschools[.]org)

CVE Alert: CVE-2025-0954

You may have missed