Cobalt Stike Beacon Detected – 45[.]76[.]171[.]233:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 179[.]60[.]146[.]53:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]54[.]168[.]113:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
VMware fixed a high-severity bug in vCenter Server
VMware this week addressed a severe vulnerability in vCenter Server that could lead to arbitrary code execution. VMware on Thursday...
How Will the Metaverse Affect Cloud Security?
The metaverse is an immersive digital world of augmented reality. While supporting a virtual universe relies on cloud storage, questions...
Malware Analysis – buran – 298dcc1285045bc397ef95ec583901da
Score: 10 MALWARE FAMILY: buranTAGS:family:buran, family:zeppelin, persistence, ransomwareMD5: 298dcc1285045bc397ef95ec583901daSHA1: 0b983d8948b282a76bece44d61e9ac73f10cfd31ANALYSIS DATE: 2022-10-07T14:07:19ZTTPS: T1060, T1112, T1082, T1012, T1120, T1107, T1490 ScoreMeaningExample10Known...
Malware Analysis – djvu – c4f3002f464ea20138a60555160f7d1c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c4f3002f464ea20138a60555160f7d1cSHA1: 1a96c10736b4d96cc9b1fd8a8d5b0f3eeae46949ANALYSIS DATE: 2022-10-07T14:17:01ZTTPS:...
Malware Analysis – persistence – 7918a614a2c0f30c7f1db6ee1cb49e08
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 7918a614a2c0f30c7f1db6ee1cb49e08SHA1: 81f27dd1fee271b51d253ca862d4712dbd5e2b78ANALYSIS DATE: 2022-10-07T14:20:53ZTTPS: T1107, T1490, T1060, T1112, T1491, T1082, T1012, T1120 ScoreMeaningExample10Known badA...
Malware Analysis – globeimposter – 59e3542c4d5293a1a12b2bb6cb357d92
Score: 10 MALWARE FAMILY: globeimposterTAGS:family:globeimposter, family:medusalocker, persistence, ransomware, spyware, stealerMD5: 59e3542c4d5293a1a12b2bb6cb357d92SHA1: f31322bc47eec5f5c7da0e46f23fb868c982daa1ANALYSIS DATE: 2022-10-07T14:25:21ZTTPS: T1060, T1112, T1005, T1081, T1082 ScoreMeaningExample10Known...
Malware Analysis – djvu – 1ff3d11cc1370a5d2cbb78b3f296a3ac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1ff3d11cc1370a5d2cbb78b3f296a3acSHA1: e5944dcb4ba10c8358ca625680d4ed8ec2cfdae6ANALYSIS DATE: 2022-10-07T14:40:34ZTTPS: T1012, T1082, T1222, T1053,...
Malware Analysis – smokeloader – c4f3002f464ea20138a60555160f7d1c
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c4f3002f464ea20138a60555160f7d1cSHA1: 1a96c10736b4d96cc9b1fd8a8d5b0f3eeae46949ANALYSIS DATE: 2022-10-07T14:41:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – a45bf5a897a017bfd0ba54be36b2be78
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: a45bf5a897a017bfd0ba54be36b2be78SHA1: fa54653817ff04a1dc06970602eab8e626f6885eANALYSIS DATE: 2022-10-07T15:22:49ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 83584c13cb7552c9457896335da9fcfd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 83584c13cb7552c9457896335da9fcfdSHA1: 7df13451b370887175457d72b18354400450bd90ANALYSIS DATE: 2022-10-07T15:20:35ZTTPS: T1222, T1082, T1012, T1005,...
Malware Analysis – amadey – 850faeb8c88754da54234d67cc3d5752
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 850faeb8c88754da54234d67cc3d5752SHA1: 8e3f8b5f9e1cc59eb216797180d53dc3bab33abaANALYSIS DATE:...
Malware Analysis – ransomware – 8984977b58651bf6d1ecf884561f20ce
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 8984977b58651bf6d1ecf884561f20ceSHA1: dd32b3522ed72225331901ca30c6d53be5ee35d9ANALYSIS DATE: 2022-10-07T16:10:23ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – masslogger – c980c7e6f4087c91113528f72c824192
Score: 10 MALWARE FAMILY: massloggerTAGS:family:masslogger, collection, ransomware, spyware, stealerMD5: c980c7e6f4087c91113528f72c824192SHA1: 4e2bba5c5ced0a245e372fed825c829ba47ba5f2ANALYSIS DATE: 2022-10-07T16:12:23ZTTPS: T1005, T1081, T1082, T1012, T1114 ScoreMeaningExample10Known badA...
Malware Analysis – smokeloader – e750ebffa7143be9bb3aece8edea96ce
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e750ebffa7143be9bb3aece8edea96ceSHA1: ef033c3b1dcf518dd460883e668be80c1ffb3a80ANALYSIS DATE: 2022-10-07T16:51:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – 8984977b58651bf6d1ecf884561f20ce
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 8984977b58651bf6d1ecf884561f20ceSHA1: dd32b3522ed72225331901ca30c6d53be5ee35d9ANALYSIS DATE: 2022-10-07T16:11:04ZTTPS: T1005, T1081, T1082, T1107, T1490, T1091 ScoreMeaningExample10Known badA malware...
Malware Analysis – amadey – e750ebffa7143be9bb3aece8edea96ce
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: e750ebffa7143be9bb3aece8edea96ceSHA1: ef033c3b1dcf518dd460883e668be80c1ffb3a80ANALYSIS DATE:...
CISA: FBI and CISA Publish a PSA on Information Manipulation Tactics for 2022 Midterm Elections
FBI and CISA Publish a PSA on Information Manipulation Tactics for 2022 Midterm Elections Title: FBI and CISA Publish a PSA...
Fortinet urges customers to immediately fix a critical authentication bypass flaw in FortiGate and FortiProxy
Fortinet addressed a critical authentication bypass vulnerability that impacted FortiGate firewalls and FortiProxy web proxies. Fortinet addressed a critical authentication...
Wakanim – 6,706,951 breached accounts
In August 2022, the European streaming service Wakanim suffered a data breach which was subsequently advertised and sold on a...
Bhinneka – 1,274,340 breached accounts
In early 2020, the Indonesian consumer electronics website Bhinneka suffered a data breach that exposed almost 1.3M customer records. The...
Cloudfox – Automating Situational Awareness For Cloud Penetration Tests
CloudFox helps you gain situational awareness in unfamiliar cloud environments. It’s an open source CloudFox is designed to be executed...
