threatintel

Cobalt Stike Beacon Detected – 101[.]34[.]76[.]186:80

October 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 37[.]1[.]215[.]252:80

October 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 137[.]184[.]7[.]253:80

October 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 1[.]15[.]54[.]42:8999

October 24, 2022

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Malware Analysis – ransomware – 494e3311b77bd7173db9e49d58e07ff6

October 24, 2022

Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 494e3311b77bd7173db9e49d58e07ff6SHA1: e0744371ad811861248b9f64ab79e0f72b6aa364ANALYSIS DATE: 2022-10-24T09:01:37ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – wannacry – 30b913fddae5295308cf3fd63ee35d5c

October 24, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 30b913fddae5295308cf3fd63ee35d5cSHA1: 41585b5d933873c2ac72e35a2a0d9aa85a5a7a88ANALYSIS DATE: 2022-10-24T09:00:28ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – djvu – c2bd252af4f49125f73f6fba509d70b3

October 24, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:nam7, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: c2bd252af4f49125f73f6fba509d70b3SHA1:...

Malware Analysis – troldesh – 410e3c46640ebe10ff385540270fad1e

October 24, 2022

Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, persistence, ransomware, trojan, upxMD5: 410e3c46640ebe10ff385540270fad1eSHA1: d16ff7d0953c480761e6af69bc81cf3a053e7defANALYSIS DATE: 2022-10-24T09:05:39ZTTPS: T1060, T1112, T1082 ScoreMeaningExample10Known badA malware family...

Malware Analysis – – 38d1b2f7932a78ff1c6192285b03c99a

October 24, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: 38d1b2f7932a78ff1c6192285b03c99aSHA1: 0a3e39b568b4a1f25e67e41ed3e5d519addf6025ANALYSIS DATE: 2022-10-24T09:30:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – ransomware – 23944ece875fe0e9874752aecfb12ef0

October 24, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 23944ece875fe0e9874752aecfb12ef0SHA1: 05eb228acf723b1230eceb31fb46bbe0811cc23dANALYSIS DATE: 2022-10-24T09:40:16ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 9bbf7b9ccdc0328c797b9290b66101ab

October 24, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 9bbf7b9ccdc0328c797b9290b66101abSHA1: 573a942f6f7e4778e2e54b18fa537adb5919df3cANALYSIS DATE: 2022-10-24T09:40:22ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...

Malware Analysis – ransomware – 880130a4c1a01e4c611f85576cfd9661

October 24, 2022

Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 880130a4c1a01e4c611f85576cfd9661SHA1: 1b3f69b09e79663a5a1e5c30e0b58b69fc7dd673ANALYSIS DATE: 2022-10-24T09:38:44ZTTPS: T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – – bbb3d02b1741d7ce95e2e3780ce5cb7b

October 24, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: bbb3d02b1741d7ce95e2e3780ce5cb7bSHA1: 932292ecd108e71e5eacfbcb9985a5c67259125cANALYSIS DATE: 2022-10-24T10:07:19ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – – 7369debfdc6669f8ef7c3b166b4bf041

October 24, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: 7369debfdc6669f8ef7c3b166b4bf041SHA1: 9bdf47f361536d04057121835e04dead701ec134ANALYSIS DATE: 2022-10-24T09:51:47ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – – 49aa80367a6609b3e74f25c8e161459b

October 24, 2022

Score: 7 MALWARE FAMILY: TAGS:MD5: 49aa80367a6609b3e74f25c8e161459bSHA1: fcb94c4cea61fa21a8fa4960514cc33ae94d02a2ANALYSIS DATE: 2022-10-24T10:00:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – – 4665ba56c2b7a6b9fbebf62c3785979d

October 24, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: 4665ba56c2b7a6b9fbebf62c3785979dSHA1: 799cd700dded3a1059b04974cdd3c8790695c5a8ANALYSIS DATE: 2022-10-24T10:13:45ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – – b0274b076c0242d074f13100d87b87a7

October 24, 2022

Score: 1 MALWARE FAMILY: TAGS:MD5: b0274b076c0242d074f13100d87b87a7SHA1: ff4089753080f562aa75b737c3017682e3e48e05ANALYSIS DATE: 2022-10-24T10:40:24ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...

Malware Analysis – wannacry – f7c34b753c7230c8a312de2a6a1a2ab0

October 24, 2022

Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: f7c34b753c7230c8a312de2a6a1a2ab0SHA1: 635ddf63f95e34967d2d8653d2d08f4f76177876ANALYSIS DATE: 2022-10-24T10:40:20ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...

Malware Analysis – djvu – 1823a652c5e16ec21c93b389ace3aa4a

October 24, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:nam7, botnet:newe, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5:...

Malware Analysis – locky – da863294f14ea0c1ab3e68ba6b45f0cf

October 24, 2022

Score: 10 MALWARE FAMILY: lockyTAGS:family:locky, ransomwareMD5: da863294f14ea0c1ab3e68ba6b45f0cfSHA1: c9143d4a1ef5d493660832efef9ff5df52e39a55ANALYSIS DATE: 2022-10-24T10:28:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

Security experts targeted with malicious CVE PoC exploits on GitHub

October 24, 2022

Researchers discovered thousands of GitHub repositories that offer fake proof-of-concept (PoC) exploits for various flaws used to distribute malware. A team...

Malware Analysis – djvu – 1767f81e6b15d8125fedcf58948e3a0a

October 24, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1767f81e6b15d8125fedcf58948e3a0aSHA1: de2a93d8806ba8a0f33f24bbf37260dbf54c64b2ANALYSIS DATE: 2022-10-24T02:03:24ZTTPS: T1012, T1082, T1222, T1053,...

Malware Analysis – djvu – 5e9f2be25372093f388c2270f6c16d7c

October 24, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 5e9f2be25372093f388c2270f6c16d7cSHA1: 89aa7779184920d4a942a55ef432e88f99b3b94eANALYSIS DATE: 2022-10-24T02:16:17ZTTPS: T1012, T1082, T1222, T1060,...

Malware Analysis – ransomware – cb211f677a774d5475c55fa639041eb1

October 24, 2022

Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: cb211f677a774d5475c55fa639041eb1SHA1: 9caf0aeb45eb49e895e3bb283655a34d732ba9efANALYSIS DATE: 2022-10-24T02:40:15ZTTPS: T1082, T1012, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

threatintel

Cobalt Stike Beacon Detected – 101[.]34[.]76[.]186:80

Cobalt Stike Beacon Detected – 37[.]1[.]215[.]252:80

Cobalt Stike Beacon Detected – 137[.]184[.]7[.]253:80

Cobalt Stike Beacon Detected – 1[.]15[.]54[.]42:8999

Malware Analysis – ransomware – 494e3311b77bd7173db9e49d58e07ff6

Malware Analysis – wannacry – 30b913fddae5295308cf3fd63ee35d5c

Malware Analysis – djvu – c2bd252af4f49125f73f6fba509d70b3

Malware Analysis – troldesh – 410e3c46640ebe10ff385540270fad1e

Malware Analysis – – 38d1b2f7932a78ff1c6192285b03c99a

Malware Analysis – ransomware – 23944ece875fe0e9874752aecfb12ef0

Malware Analysis – ransomware – 9bbf7b9ccdc0328c797b9290b66101ab

Malware Analysis – ransomware – 880130a4c1a01e4c611f85576cfd9661

Malware Analysis – – bbb3d02b1741d7ce95e2e3780ce5cb7b

Malware Analysis – – 7369debfdc6669f8ef7c3b166b4bf041

Malware Analysis – – 49aa80367a6609b3e74f25c8e161459b

Malware Analysis – – 4665ba56c2b7a6b9fbebf62c3785979d

Malware Analysis – – b0274b076c0242d074f13100d87b87a7

Malware Analysis – wannacry – f7c34b753c7230c8a312de2a6a1a2ab0

Malware Analysis – djvu – 1823a652c5e16ec21c93b389ace3aa4a

Malware Analysis – locky – da863294f14ea0c1ab3e68ba6b45f0cf

Security experts targeted with malicious CVE PoC exploits on GitHub

Malware Analysis – djvu – 1767f81e6b15d8125fedcf58948e3a0a

Malware Analysis – djvu – 5e9f2be25372093f388c2270f6c16d7c

Malware Analysis – ransomware – cb211f677a774d5475c55fa639041eb1

Cobalt Strike Beacon Detected – 118[.]178[.]89[.]212:4434

Cobalt Strike Beacon Detected – 193[.]57[.]57[.]121:9443

Cobalt Strike Beacon Detected – 124[.]71[.]192[.]162:50000

Cobalt Strike Beacon Detected – 18[.]138[.]186[.]108:4444

Cobalt Strike Beacon Detected – 8[.]130[.]123[.]92:80

You may have missed