Massive Black hat SEO campaign used +15K WordPress sites
Experts warn of a malicious SEO campaign that has compromised over 15,000 WordPress websites to redirect visitors to fake Q&A portals....
threatintel
KmsdBot, a new evasive bot for cryptomining activity and DDoS attacks
Researchers spotted a new evasive malware, tracked as KmsdBot, that infects systems via an SSH connection that uses weak credentials....
Unblob – Extract Files From Any Kind Of Container Formats
Download Unblob If you like the site, please consider joining the telegram channel or supporting us on Patreon using the...
Cobalt Stike Beacon Detected – 172[.]104[.]240[.]104:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]71[.]145[.]63:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 180[.]76[.]105[.]82:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Black Basta Ransomware Victim: Kessing Rechtsanwälte und Fachanwälte in PartGmbB
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 43[.]143[.]119[.]212:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]55[.]56[.]183:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]199[.]168[.]128:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]233[.]203[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]142[.]230:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]70[.]102[.]188:9998
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]79[.]72[.]3:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]28[.]246[.]221:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – b6fbb0dd67c9fd58bf9c7e60aeb3e9b8
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: b6fbb0dd67c9fd58bf9c7e60aeb3e9b8SHA1: 2d30a2db0ac43921dfdf0228f738c0884bf0bd83ANALYSIS DATE: 2022-11-14T09:30:39ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 43[.]142[.]190[.]164:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]44[.]42[.]44:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]74[.]250[.]144:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]107[.]122[.]86:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – ffc6b559c24b8d82afcb5c01bb5619d9
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: ffc6b559c24b8d82afcb5c01bb5619d9SHA1: 8e068e9c486769716d9685f85687b531ab3a88cfANALYSIS DATE: 2022-11-14T10:03:03ZTTPS: T1490, T1059, T1107, T1082, T1012, T1120, T1485 ScoreMeaningExample10Known badA malware...
Malware Analysis – smokeloader – 3f6b1c1cd133937bbe3781b9a28c91af
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3f6b1c1cd133937bbe3781b9a28c91afSHA1: a56615cffbaef08aa53712dbb5b1f66f177cf097ANALYSIS DATE: 2022-11-14T09:38:24ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – f92091840ff62e8f0cbaf50013112f51
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:123, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – 1e0cb852ceabe48fe07138d0edf648f5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, botnet:rozena1113, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan,...
