threatintel

Malware Analysis – globeimposter – 7791c18c9d4a94d80a7928644937c070

January 27, 2023

Score: 10 MALWARE FAMILY: globeimposterTAGS:family:globeimposter, persistence, ransomware, spyware, stealerMD5: 7791c18c9d4a94d80a7928644937c070SHA1: 41fca79af1747a862864d2c9114648d6f5404bedANALYSIS DATE: 2023-01-27T10:00:24ZTTPS: T1005, T1081, T1082, T1060, T1112 ScoreMeaningExample10Known badA...

Posh C2 Detected – 135[.]181[.]253[.]65:443

January 27, 2023

The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...

Vice Society Ransomware Victim: Bristol Community College

January 27, 2023

Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Malware Analysis – smokeloader – 79f867b1b9a9b5b64b7fd471c63ccdd6

January 27, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 79f867b1b9a9b5b64b7fd471c63ccdd6SHA1: 83c1c343245518432ba561f72d65d52e9f607fbfANALYSIS DATE: 2023-01-27T03:16:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – djvu – 7a16c7dc54ff82bafb8ff194789f2cf2

January 27, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 7a16c7dc54ff82bafb8ff194789f2cf2SHA1: 542345446ad059bbc82f554de67df8be1e6a070dANALYSIS DATE: 2023-01-27T04:22:36ZTTPS: T1060, T1112, T1082, T1005,...

Malware Analysis – lockbit – ebd239b8b8fe486b2a13a5896a96d044

January 27, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: ebd239b8b8fe486b2a13a5896a96d044SHA1: 60821226d8d934d488d4f8e8081c32c6a73f8929ANALYSIS DATE: 2023-01-27T05:22:03ZTTPS: T1490, T1046, T1060, T1112, T1082, T1107 ScoreMeaningExample10Known...

Malware Analysis – lockbit – 0ee7386109b1f3596ae62735cf53f6b3

January 27, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 0ee7386109b1f3596ae62735cf53f6b3SHA1: 0a67f0154a003fd06597a28dd2fd3e2f63b333b7ANALYSIS DATE: 2023-01-27T05:13:45ZTTPS: T1490, T1046, T1082, T1018, T1491, T1112, T1060,...

Malware Analysis – smokeloader – cff2799137f6dbfa54d7e8d6c45ab395

January 27, 2023

Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: cff2799137f6dbfa54d7e8d6c45ab395SHA1: ee58b60a36e5152de027bb5d00e85c5b8b613a8bANALYSIS DATE: 2023-01-27T04:29:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Malware Analysis – discovery – 03845022a6a113f6c4de407b644e8c5a

January 27, 2023

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 03845022a6a113f6c4de407b644e8c5aSHA1: 3497d9894fc9b629e53c57cd2310f9c619dfe007ANALYSIS DATE: 2023-01-27T04:50:32ZTTPS: T1012, T1082, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...

Malware Analysis – djvu – 2cba3b77e08584bb8b4b823bca27bf0a

January 27, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 2cba3b77e08584bb8b4b823bca27bf0aSHA1: 15840c50da253e6d2b5654d30a165d32bff91db3ANALYSIS DATE: 2023-01-27T05:52:45ZTTPS: T1060, T1112, T1012, T1082,...

Malware Analysis – lockbit – b0916724ff4118bf213e31cd198c0afd

January 27, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: b0916724ff4118bf213e31cd198c0afdSHA1: 12ac32d012e818c78d6db790f6e11838ca75db88ANALYSIS DATE: 2023-01-27T05:25:49ZTTPS: T1490, T1046, T1060, T1112, T1107, T1082, T1491,...

Malware Analysis – lockbit – 01c9561a15dc451562ba536d8239fa41

January 27, 2023

Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 01c9561a15dc451562ba536d8239fa41SHA1: 9566de40d3435be6fac364e11d50d67d8a3c8dc4ANALYSIS DATE: 2023-01-27T05:24:24ZTTPS: T1490, T1046, T1082, T1060, T1112, T1107, T1491...

Malware Analysis – djvu – ee739793bb58a7e07a7bdd0764599625

January 27, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: ee739793bb58a7e07a7bdd0764599625SHA1: 755f9a8ba645382117579761ce3a3714b35b862aANALYSIS DATE: 2023-01-27T05:46:43ZTTPS:...

BlackCat/ALPHV Ransomware Victim: CHARLES P VONDERHAAR CPA WAS HACKED[.] MORE TNAH 50GB SENSETIVE DATA LEAKED[.]CHARLES P VONDERHAAR CPA WAS HACKED[.] MORE TNAH 50GB SENSETIVE DATA LEAKED[.]

January 27, 2023

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

BlackCat/ALPHV Ransomware Victim: SOLAR INDUSTRIES INDIA WAS HACKED[.] MORE THAN 2TB SECRET MILITARY DATA LEAKED

January 27, 2023

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Vice Society Ransomware Victim: Bristol Community College

January 27, 2023

Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...