Security

Digital Binary Code on Dark Red Background. Data Breach

CoinTracker – 1,557,153 breached accounts

December 12, 2022

In December 2022, the Crypto & NFT taxes service CoinTracker reported a data breach that impacted over 1.5M of their...

Legitify – Detect And Remediate Misconfigurations And Security Risks Across All Your GitHub Assets

December 12, 2022

Strengthen the security posture of your GitHub organization! Detect and remediate misconfigurations, security and compliance issues across all your GitHub...

Malware Analysis – smokeloader – 8641bde8beb42a6d0719cfd21848a563

December 12, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8641bde8beb42a6d0719cfd21848a563SHA1: fc61c5a119308cf3111cef1e7ae86b1b67720a26ANALYSIS DATE: 2022-12-12T09:24:00ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – – 03cea7c49abe78863ae2644ac77c8efb

December 12, 2022

Score: 10 MALWARE FAMILY: TAGS:MD5: 03cea7c49abe78863ae2644ac77c8efbSHA1: 59edd4b3c523af71219fff0e15f8daa6ec11783dANALYSIS DATE: 2022-12-12T09:40:42ZTTPS: T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Malware Analysis – lockbit – df7a9a45a10c1942225eb9be257fb752

December 12, 2022

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: df7a9a45a10c1942225eb9be257fb752SHA1: 874630d6f4bdf9224125d35f30c48bc6d1da8ec1ANALYSIS DATE: 2022-12-12T09:41:20ZTTPS: T1490, T1046, T1107, T1060, T1112, T1082 ScoreMeaningExample10Known...

Malware Analysis – djvu – ffc82918bc86df0a1dd97029426cc893

December 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: ffc82918bc86df0a1dd97029426cc893SHA1: 6da97d9b204e1e3f610f45031c2e8fbd6d90df27ANALYSIS DATE: 2022-12-12T10:05:47ZTTPS: T1082, T1012, T1005, T1081,...

Malware Analysis – dcrat – 09ba7117d4348bb27231cdffcc5b75a1

December 12, 2022

Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...

Cobalt Stike Beacon Detected – 176[.]113[.]115[.]124:443

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – 0591ce7264414813b1128e2f19f8c701

December 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 0591ce7264414813b1128e2f19f8c701SHA1: d3af240c112ca5f42811e3dfa773d2eb0593fb8cANALYSIS DATE: 2022-12-12T10:27:33ZTTPS: T1060, T1112, T1012, T1082,...

Cobalt Stike Beacon Detected – 106[.]12[.]134[.]91:777

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]142[.]60[.]207:8080

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 69[.]172[.]74[.]52:443

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – djvu – cc3dec5ba3f97a58aba84f195f56a3ac

December 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: cc3dec5ba3f97a58aba84f195f56a3acSHA1: b2ef30ae4c62b330584c1783c12deb4dac13e1e4ANALYSIS DATE: 2022-12-12T10:53:48ZTTPS: T1060, T1112, T1012, T1082,...

Malware Analysis – smokeloader – 5e8b41e37d55fbb987d824e3010caafe

December 12, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5e8b41e37d55fbb987d824e3010caafeSHA1: 450562fc2cb9a92ca70573bad727e32ed5d171ddANALYSIS DATE: 2022-12-12T10:49:44ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – joker – 16a4cbdb16994f328003f63a8b16a1ab

December 12, 2022

Score: 10 MALWARE FAMILY: jokerTAGS:family:joker, evasion, infostealer, ransomware, trojanMD5: 16a4cbdb16994f328003f63a8b16a1abSHA1: 87b027fa2a3bf188d5945720bc16dc1f9469cf77ANALYSIS DATE: 2022-12-12T10:57:02ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – ransomware – 183ad97d55d1170f21a8d10a8339fdab

December 12, 2022

Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 183ad97d55d1170f21a8d10a8339fdabSHA1: 427b302690b2418b5b414fee3ac6ce585e6fe375ANALYSIS DATE: 2022-12-12T10:56:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Cobalt Stike Beacon Detected – 107[.]189[.]12[.]60:80

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]154[.]57[.]146:8002

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 18[.]192[.]11[.]175:80

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 103[.]155[.]92[.]229:80

December 12, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – smokeloader – e2aa8611ff12300ed35713bd5b396b2e

December 12, 2022

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e2aa8611ff12300ed35713bd5b396b2eSHA1: 21a61539cbd78c50ae43234657b0d7e6a6a81010ANALYSIS DATE: 2022-12-12T11:14:49ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 88c46c7fa052089249e07fc1425e07bd

December 12, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 88c46c7fa052089249e07fc1425e07bdSHA1: f0e3c48f0aa75999b5f790faf3930b87e892b664ANALYSIS DATE: 2022-12-12T11:01:50ZTTPS: T1012, T1082, T1005, T1081,...

Malware Analysis – dcrat – e2a32071d75e13ad12354cde287a1469

December 12, 2022

Malware Analysis – dcrat – ae28646e93a50694398096751b0e149f

December 12, 2022

Security

CoinTracker – 1,557,153 breached accounts

Legitify – Detect And Remediate Misconfigurations And Security Risks Across All Your GitHub Assets

Malware Analysis – smokeloader – 8641bde8beb42a6d0719cfd21848a563

Malware Analysis – – 03cea7c49abe78863ae2644ac77c8efb

Malware Analysis – lockbit – df7a9a45a10c1942225eb9be257fb752

Malware Analysis – djvu – ffc82918bc86df0a1dd97029426cc893

Malware Analysis – dcrat – 09ba7117d4348bb27231cdffcc5b75a1

Cobalt Stike Beacon Detected – 176[.]113[.]115[.]124:443

Malware Analysis – djvu – 0591ce7264414813b1128e2f19f8c701

Cobalt Stike Beacon Detected – 106[.]12[.]134[.]91:777

Cobalt Stike Beacon Detected – 43[.]142[.]60[.]207:8080

Cobalt Stike Beacon Detected – 69[.]172[.]74[.]52:443

Malware Analysis – djvu – cc3dec5ba3f97a58aba84f195f56a3ac

Malware Analysis – smokeloader – 5e8b41e37d55fbb987d824e3010caafe

Malware Analysis – joker – 16a4cbdb16994f328003f63a8b16a1ab

Malware Analysis – ransomware – 183ad97d55d1170f21a8d10a8339fdab

Cobalt Stike Beacon Detected – 107[.]189[.]12[.]60:80

Cobalt Stike Beacon Detected – 43[.]154[.]57[.]146:8002

Cobalt Stike Beacon Detected – 18[.]192[.]11[.]175:80

Cobalt Stike Beacon Detected – 103[.]155[.]92[.]229:80

Malware Analysis – smokeloader – e2aa8611ff12300ed35713bd5b396b2e

Malware Analysis – djvu – 88c46c7fa052089249e07fc1425e07bd

Malware Analysis – dcrat – e2a32071d75e13ad12354cde287a1469

Malware Analysis – dcrat – ae28646e93a50694398096751b0e149f

CVE Alert: CVE-2025-27839

CVE Alert: CVE-2025-1261

CVE Alert: CVE-2024-12460

CVE Alert: CVE-2024-13890

CVE Alert: CVE-2025-1504

You may have missed