Hive Ransomware extorted over $100M in ransom payments from over 1,300 companies
Hive ransomware operators have extorted over $100 million in ransom payments from over 1,300 companies worldwide as of November 2022....
threatintel
Slicer – Tool To Automate The Boring Process Of APK Recon
Download Slicer If you like the site, please consider joining the telegram channel or supporting us on Patreon using the...
Cobalt Stike Beacon Detected – 81[.]68[.]241[.]8:8087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 51[.]140[.]141[.]107:83
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]193[.]145[.]27:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]34[.]117[.]22:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]180[.]62:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]99[.]93[.]200:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]162[.]105:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]90:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]227[.]252[.]247:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]198[.]163:8033
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]57[.]127[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]4[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 144[.]34[.]164[.]76:8889
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – venus – 38d8f55b3a4b6871b5e62fdc73c504d6
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, evasion, persistence, ransomwareMD5: 38d8f55b3a4b6871b5e62fdc73c504d6SHA1: 102b8625e5662c89efe4547dc2cb173be8b08851ANALYSIS DATE: 2022-11-18T09:06:42ZTTPS: T1018, T1031, T1060, T1112, T1082, T1012, T1120 ScoreMeaningExample10Known...
Malware Analysis – venus – 99bc5e82135557b8e571b2deab9f297f
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, persistence, ransomware, spyware, stealerMD5: 99bc5e82135557b8e571b2deab9f297fSHA1: ec11f6abf13044a438a7f363bda2c9d5709d2475ANALYSIS DATE: 2022-11-18T09:09:43ZTTPS: T1060, T1112, T1082, T1018, T1012, T1120, T1005,...
Malware Analysis – djvu – 045d54b0d3abb25388920575931dc808
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Malware Analysis – venus – 1c45c33e9884cb10264c1a2a0255e72a
Score: 10 MALWARE FAMILY: venusTAGS:family:venus, evasion, persistence, ransomwareMD5: 1c45c33e9884cb10264c1a2a0255e72aSHA1: 1992336a5d752187c979e24a95a871d8932ade6dANALYSIS DATE: 2022-11-18T09:06:41ZTTPS: T1031, T1082, T1012, T1120, T1060, T1112, T1018 ScoreMeaningExample10Known...
Malware Analysis – djvu – 75a94380a8882221cfcd80d761db68b5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 75a94380a8882221cfcd80d761db68b5SHA1: cd1beb5a0bfa1d448d04a68ff9dc2f1b6286bbadANALYSIS DATE: 2022-11-18T10:15:56ZTTPS: T1005, T1081, T1222, T1012,...
Malware Analysis – dcrat – 89c367f90c1cd21cf580807cf4d5cb19
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:517, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, rat,...
Malware Analysis – chaos – f6e9a9c91ab4cb5dcc9e1c6e9aa2e3a5
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: f6e9a9c91ab4cb5dcc9e1c6e9aa2e3a5SHA1: 76831eb24a45cf1b27464879e9fe8806fa856084ANALYSIS DATE: 2022-11-18T10:28:03ZTTPS: T1490, T1059, T1107, T1491, T1112, T1005, T1081,...
Malware Analysis – djvu – de4b9445fa8264a29eecd2dd00a39fa7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: de4b9445fa8264a29eecd2dd00a39fa7SHA1: 0174d80ae151becb119020489834849049d15c0bANALYSIS DATE: 2022-11-18T10:45:53ZTTPS: T1005, T1081, T1060, T1112,...
Ongoing supply chain attack targets Python developers with WASP Stealer
A threat actor tracked as WASP is behind an ongoing supply chain attack targeting Python developers with the WASP Stealer....
