DJI drone tracking data exposed in the US
Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by...
threatintel
Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)
Overview On September 10, 2022, a user reported on Zimbra’s official forums that their team detected a security incident originating...
Malware Analysis – discovery – 6905e9e6ec69c8f324f51d755f8a85f0
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 6905e9e6ec69c8f324f51d755f8a85f0SHA1: 18b8badd020675e0251c7431899c58de4fb76533ANALYSIS DATE: 2022-10-13T22:30:48ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – evasion – 493d67f1e5dad681c15249f4c8737980
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 493d67f1e5dad681c15249f4c8737980SHA1: c49a0dcd26cc9c3cfe43e5398dc7e9f928ba1f97ANALYSIS DATE: 2022-10-13T23:23:45ZTTPS: T1082, T1012, T1120, T1491, T1112, T1004, T1060, T1091,...
Malware Analysis – djvu – 40afe7409ce7634d460ba5e85c477efc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 40afe7409ce7634d460ba5e85c477efcSHA1: 609cc6265c63ea0b9ceaa8e8e0a9bfe81032c3d4ANALYSIS DATE:...
Malware Analysis – smokeloader – 5a1dc674681bf0652500813bedd52416
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 5a1dc674681bf0652500813bedd52416SHA1: 02209e45efac844b5cf7a8dbfe098172a81630a9ANALYSIS DATE: 2022-10-14T02:02:45ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 6507fceb882ebd25468607abfca30b3c
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 6507fceb882ebd25468607abfca30b3cSHA1: 56d558db5207c1d683ad4804abda4e285eabb76eANALYSIS DATE: 2022-10-13T23:23:50ZTTPS: T1088, T1089, T1112, T1060, T1158, T1082, T1012, T1120,...
Malware Analysis – smokeloader – 3926dc32500a1214432357400c2743e1
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3926dc32500a1214432357400c2743e1SHA1: 5ab53cea630a962e320d641d0f3e31beab8513eeANALYSIS DATE: 2022-10-14T02:56:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – a11e40135fd9ff472e8ade1b52d6e9a5
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: a11e40135fd9ff472e8ade1b52d6e9a5SHA1: fda874e1fd920a5ef9c3703899868902ccbacc15ANALYSIS DATE: 2022-10-14T03:02:03ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 2534c737caef3e493adb9d938ef169d8
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2534c737caef3e493adb9d938ef169d8SHA1: 027f16794348fdabb32f4b9920e71920964e79a5ANALYSIS DATE: 2022-10-14T03:03:03ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – d4eeebdda5eb7be85f2d03b81f579342
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: d4eeebdda5eb7be85f2d03b81f579342SHA1: f64302686c60e1f67a33456af80e1a4b9f21b8ecANALYSIS DATE: 2022-10-14T03:02:04ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – danabot – a8175a6f56749f36c353e0e25e2dc7cd
Score: 10 MALWARE FAMILY: danabotTAGS:family:danabot, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, banker, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...
Malware Analysis – ransomware – 776eb80d497eead5b2ed81835694bfb9
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 776eb80d497eead5b2ed81835694bfb9SHA1: 0124f5f2cadb6e75c6f18137a7ff7affa75fccbfANALYSIS DATE: 2022-10-14T03:04:03ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – edcc881113cb158df3922975670d3454
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: edcc881113cb158df3922975670d3454SHA1: 91a406d9bf0a64aad0e5768c7f3a94bde6b92475ANALYSIS DATE: 2022-10-14T03:27:03ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – ransomware – 2f0b9d722bcd0fa9b322957dd3a7ed1d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 2f0b9d722bcd0fa9b322957dd3a7ed1dSHA1: 003f3d0f45f53f128c129a2024d3aee409242271ANALYSIS DATE: 2022-10-14T03:03:06ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – d742a599500e84ac441fe11090587c80
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: d742a599500e84ac441fe11090587c80SHA1: b7ba96774846c3336fe92ca8d5cb16a7bc000ad9ANALYSIS DATE: 2022-10-14T03:50:19ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – b25c20f697c33555762ce656c41fe7b7
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: b25c20f697c33555762ce656c41fe7b7SHA1: 4574446dc58f2eb7518ff936c72e0e2f569d0dd0ANALYSIS DATE: 2022-10-14T04:00:05ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – dharma – 8f1ebbcbdf8bc826852d06270494fbc5
Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 8f1ebbcbdf8bc826852d06270494fbc5SHA1: d1eae57063d8a5cb242699a326a5d8e80adaa53eANALYSIS DATE: 2022-10-14T03:53:44ZTTPS: T1060, T1112, T1107, T1490, T1005, T1081, T1082,...
Malware Analysis – ransomware – 70f17f8169e057b0b26508df49cac1dd
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 70f17f8169e057b0b26508df49cac1ddSHA1: dbfa78bc1b3a83e5533380326d38d23d90eadb1dANALYSIS DATE: 2022-10-14T03:51:30ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – wannacry – 793eecf8285b545c5af127e48864abfc
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 793eecf8285b545c5af127e48864abfcSHA1: a32163fa13f68c5c8047f64d2f2794f623ea9a0bANALYSIS DATE: 2022-10-14T03:51:56ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – ransomware – 5b5d75a10854148eab86a57e1e374ade
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 5b5d75a10854148eab86a57e1e374adeSHA1: b9d80a4578e0eeae6e1b4b7ee06f2affce26d2a2ANALYSIS DATE: 2022-10-14T04:00:13ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
Malware Analysis – dharma – 273c621be48f55a3919cf18c42f4477d
Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 273c621be48f55a3919cf18c42f4477dSHA1: 0e66fcf95126735b554308d0b22bce646e1ef34aANALYSIS DATE: 2022-10-14T04:10:46ZTTPS: T1107, T1490, T1112, T1060, T1005, T1081, T1082...
Malware Analysis – ransomware – ad14793dca54fe49447098f60df2dde8
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: ad14793dca54fe49447098f60df2dde8SHA1: 009926e3d22f6b9f9336e8ff7d5ff34b762b6e91ANALYSIS DATE: 2022-10-14T04:00:10ZTTPS: T1091, T1005, T1081, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Malware Analysis – ransomware – 270d4b30b751c3a1517579bd9730284d
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 270d4b30b751c3a1517579bd9730284dSHA1: ea41b653222342866280409b17b11c3ab03155c4ANALYSIS DATE: 2022-10-14T04:00:16ZTTPS: T1107, T1490, T1091, T1005, T1081, T1082 ScoreMeaningExample10Known badA malware...
