Cobalt Stike Beacon Detected – 84[.]32[.]188[.]244:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Malware Analysis – djvu – 352e96b903513bea0586e76f677bd7a0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 352e96b903513bea0586e76f677bd7a0SHA1: 1bd12034347ce8aedcaa6c4612622ebb5142e83cANALYSIS DATE: 2022-11-01T11:40:30ZTTPS: T1222, T1060, T1112, T1005, T1081, T1012,...
Malware Analysis – smokeloader – 9e775e96fa042f3b834bbc419900ccc7
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9e775e96fa042f3b834bbc419900ccc7SHA1: 2979669e92f199a0aaddc71e7133891af20ef6d7ANALYSIS DATE: 2022-11-01T10:51:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – lockbit – 23e2134379d01a6efcfb519df2819bce
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, ransomwareMD5: 23e2134379d01a6efcfb519df2819bceSHA1: 93e1a0c2918ece7a768b9b3fd8d5203e1fa0754cANALYSIS DATE: 2022-11-01T11:19:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – bfd9b7bda4437c4b6ca3d10738afb87a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan, upxMD5: bfd9b7bda4437c4b6ca3d10738afb87aSHA1:...
Samsung Galaxy Store flaw could have allowed installing malicious apps on target devices
A security flaw in the Galaxy Store app for Samsung devices could have potentially allowed remote command execution on affected...
APT10: Tracking down LODEINFO 2022, part II
In the previous publication ‘Tracking down LODEINFO 2022, part I‘, we mentioned that the initial infection methods vary in different...
APT10: Tracking down LODEINFO 2022, part I
Kaspersky has been tracking activities involving the LODEINFO malware family since 2019, looking for new modifications and thoroughly investigating any...
LockBit 3.0 Ransomware Victim: centurion[.]com[.]pl
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: hoosierco[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – b482dd352ddeb71adc03e2d24c49189c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: b482dd352ddeb71adc03e2d24c49189cSHA1: 2453d68c559fca10b1bc8185ef8da16c478520cbANALYSIS...
Malware Analysis – djvu – 326b996ad2342c28d3b5e2e94432c4d3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 326b996ad2342c28d3b5e2e94432c4d3SHA1: 158034f8bf2d95774a7a6806dcaa250485eb2408ANALYSIS...
Malware Analysis – smokeloader – 4c55f36fd0aa2aadbd6760930c7be8be
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 4c55f36fd0aa2aadbd6760930c7be8beSHA1: a9c8f7e0b6701c576b509e9dfdacfe58262d28b2ANALYSIS DATE: 2022-11-01T04:06:36ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 9852898c26e5194f66754becdb69afb8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 9852898c26e5194f66754becdb69afb8SHA1: 3123b281cb8e992a3246f6285f18bc0dbfc1dc07ANALYSIS...
Malware Analysis – smokeloader – dda494bf360d381f476a7b393f23e149
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: dda494bf360d381f476a7b393f23e149SHA1: 62be4a4a8508786b60ca79c1b5820fd16137a97eANALYSIS DATE: 2022-11-01T05:02:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – chaos – d655e77841cf6db3008dcd60c9c5eb18
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: d655e77841cf6db3008dcd60c9c5eb18SHA1: 66d8fc2c3b7f36e935a283e10690249043a387a4ANALYSIS DATE: 2022-11-01T05:36:09ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – chaos – a7b9b6b7f5eab410977691108e0af61e
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: a7b9b6b7f5eab410977691108e0af61eSHA1: 06b9eab2dc8d67fda881bbaa48dd02803fc24e74ANALYSIS DATE: 2022-11-01T05:36:14ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – ransomware – 7066d7ed733333d682478e66b051811a
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7066d7ed733333d682478e66b051811aSHA1: 82eab97bf5109387637b2f54e78aa60c92f76ef6ANALYSIS DATE: 2022-11-01T05:36:31ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – chaos – 8ee79ded5497779cd7e0b46a876d09cf
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: 8ee79ded5497779cd7e0b46a876d09cfSHA1: 3179b69d3f8fcc35e0386c7c1a70ce0269d03a3fANALYSIS DATE: 2022-11-01T05:36:19ZTTPS: T1490, T1059, T1107, T1082, T1491, T1112, T1005,...
Malware Analysis – ransomware – f34bc17d50dfbffaecab4b3f426aed49
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f34bc17d50dfbffaecab4b3f426aed49SHA1: 3be52623b3788b7d7492c743cab9fabb8754c237ANALYSIS DATE: 2022-11-01T05:37:38ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – wannacry – ab9f94f05ce248f32989529ad31f6a58
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: ab9f94f05ce248f32989529ad31f6a58SHA1: d17160bfcf0c17dcf50eebaee4bbaf8f7d220df3ANALYSIS DATE: 2022-11-01T05:38:38ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – wannacry – aadd501e7f87ad9279eec57a5ea987ca
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, persistence, ransomware, spyware, stealer, wormMD5: aadd501e7f87ad9279eec57a5ea987caSHA1: a378ed3f7e758e1c8389fdd33a1774ff5e38daa8ANALYSIS DATE: 2022-11-01T05:38:43ZTTPS: T1158, T1491, T1112, T1060, T1107,...
Malware Analysis – babuk – 8e18c2da2c202697eb9552c07db3be1c
Score: 10 MALWARE FAMILY: babukTAGS:family:babuk, ransomwareMD5: 8e18c2da2c202697eb9552c07db3be1cSHA1: 93d20b75e18dd53ed16215262f43c1074e55f025ANALYSIS DATE: 2022-11-01T05:37:40ZTTPS: T1082, T1107, T1490, T1012, T1120 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – wannacry – 761fd6c82180421aa39bf04182ec3f11
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 761fd6c82180421aa39bf04182ec3f11SHA1: a2068f92316993137cb3d47b13d018dfcebcb13dANALYSIS DATE: 2022-11-01T05:38:31ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
