Cobalt Stike Beacon Detected – 47[.]108[.]216[.]93:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Stike Beacon Detected – 14[.]225[.]205[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 174[.]137[.]49[.]238:8088
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 79afe5212a85f53a83ec1cf4d3ef1cb1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 79afe5212a85f53a83ec1cf4d3ef1cb1SHA1: ede4d779271049a10d83fbd9fbc1394d1b32db47ANALYSIS DATE: 2022-10-07T09:16:28ZTTPS: T1005, T1081, T1012, T1082,...
Cobalt Stike Beacon Detected – 106[.]52[.]130[.]164:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 573d5adbc8aa739642ae36bedfcbcc0b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 573d5adbc8aa739642ae36bedfcbcc0bSHA1: bedd44262ec356e1e130ae27f6e075e91fef1eb5ANALYSIS DATE: 2022-10-07T09:13:22ZTTPS: T1222, T1053, T1005, T1081,...
Malware Analysis – smokeloader – 782995a03137a524e3568041ceba4fc4
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 782995a03137a524e3568041ceba4fc4SHA1: 8eef8e69d40d085aa00ba2e1e039cbfb71006a86ANALYSIS DATE: 2022-10-07T09:32:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 782995a03137a524e3568041ceba4fc4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 782995a03137a524e3568041ceba4fc4SHA1: 8eef8e69d40d085aa00ba2e1e039cbfb71006a86ANALYSIS DATE: 2022-10-07T09:30:51ZTTPS:...
Malware Analysis – djvu – 402a9ad95603a61734fb4930fdd5b6ef
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 402a9ad95603a61734fb4930fdd5b6efSHA1: a4849d63327bc943e5999a37dad4f87000c7f022ANALYSIS DATE: 2022-10-07T09:56:18ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – e2c04ff0f6965a5cc683a982a199a025
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: e2c04ff0f6965a5cc683a982a199a025SHA1: 12a3c1b0d25a35a9042590f657ba70fbd3e95130ANALYSIS DATE: 2022-10-07T09:42:45ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – smokeloader – 72b054d5ea096ec65e7f765a8bddcedc
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 72b054d5ea096ec65e7f765a8bddcedcSHA1: 0b2a87ffca78fbf6e7341390c864fc3dc3136192ANALYSIS DATE: 2022-10-07T10:01:06ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 72b054d5ea096ec65e7f765a8bddcedc
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 72b054d5ea096ec65e7f765a8bddcedcSHA1: 0b2a87ffca78fbf6e7341390c864fc3dc3136192ANALYSIS DATE:...
Hacker stole $566 million worth of Binance Coins from Binance Bridge
Threat actors have stolen 2 million Binance Coins (BNB), worth $566 million, from the popular Binance Bridge. Hackers have reportedly...
LilithBot Malware, a new MaaS offered by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
A look at the 2020–2022 ATM/PoS malware landscape
During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale...
LilithBot Malware, a new MaaS offere by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:02:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 890e8e2011fc7a98a91d27746288d45b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:04:25ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 890e8e2011fc7a98a91d27746288d45b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, collection, discovery, persistence, ransomware, spyware, stealerMD5: 890e8e2011fc7a98a91d27746288d45bSHA1: 98ec5e6e52963f34b96d7d889cab724125419a93ANALYSIS DATE: 2022-10-07T02:06:39ZTTPS: T1102, T1012, T1120,...
Malware Analysis – djvu – 1d0ec78f9be7ee4a512f894d3f0be3cc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 1d0ec78f9be7ee4a512f894d3f0be3ccSHA1: 7cdf3682f9937e87299173f01f7d262eb11e0ac6ANALYSIS DATE: 2022-10-07T02:32:08ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – djvu – 925d49af178b98a12118f93c8a82422d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 925d49af178b98a12118f93c8a82422dSHA1: cbeff9068bfe1f440053f42484af914962e58c40ANALYSIS DATE: 2022-10-07T02:19:23ZTTPS: T1060, T1112, T1222, T1012,...
Malware Analysis – djvu – 95f7ca058006800e6d0db8190b5bbc23
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 95f7ca058006800e6d0db8190b5bbc23SHA1: 00e8525af59c61354ca37c5847200f9a5b294ceaANALYSIS DATE: 2022-10-07T03:20:28ZTTPS: T1222, T1082, T1053, T1012,...
Malware Analysis – djvu – 30a3128f9027608e605a7bc649368072
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 30a3128f9027608e605a7bc649368072SHA1: 0a75b16d5c953bd13441dad69bd68a91410c3f3cANALYSIS DATE: 2022-10-07T03:27:25ZTTPS: T1012, T1060, T1112, T1222,...
Malware Analysis – blackbasta – 6d5b9675b68bac95b885b4bb294134a1
Score: 10 MALWARE FAMILY: blackbastaTAGS:family:blackbasta, evasion, ransomwareMD5: 6d5b9675b68bac95b885b4bb294134a1SHA1: 74dbf463be3139a28d9851b3b80c2ecac3e56304ANALYSIS DATE: 2022-10-07T03:40:04ZTTPS: T1490, T1491, T1112, T1082, T1107 ScoreMeaningExample10Known badA malware family...
