threatintel

Malware Analysis – djvu – 5cccc51e564aaed1220ca88d4d427dd3

November 1, 2022

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 5cccc51e564aaed1220ca88d4d427dd3SHA1: efd852e39a3a4825060f8d891137a7d2f56212f6ANALYSIS DATE: 2022-10-31T23:52:39ZTTPS: T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA malware...

US-CERT Bulletin (SB22-304):Vulnerability Summary for the Week of October 24, 2022

October 31, 2022

The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...

VMware warns of the public availability of CVE-2021-39144 exploit code

October 31, 2022

VMware warned of the availability of a public exploit for a recently addressed critical remote code execution flaw in NSX...

CISA: CISA Releases Guidance on Phishing-Resistant and Numbers Matching Multifactor Authentication

October 31, 2022

CISA Releases Guidance on Phishing-Resistant and Numbers Matching Multifactor Authentication CISA has released two fact sheets to highlight threats against...

Actively exploited Windows Mark-of-the-Web zero-day received an unofficial patch

October 31, 2022

An unofficial patch for an actively exploited flaw in Microsoft Windows that allows to bypass Mark-of-the-Web (MotW) protections. 0patch released...

Malware Analysis – evasion – 91efa3e788805a851d3319d1c75d3770

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 91efa3e788805a851d3319d1c75d3770SHA1: 1389eb6b5e83dd20671c0b40cc0e3977715eed71ANALYSIS DATE: 2022-10-30T22:18:17ZTTPS: T1060, T1112, T1004, T1082, T1158, T1088,...

Malware Analysis – evasion – a09d3b0d9ff6e23b97cd1d3359913ef0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a09d3b0d9ff6e23b97cd1d3359913ef0SHA1: 59b46d681d1529abcf0b5663156fd3cf6cdbb04bANALYSIS DATE: 2022-10-30T22:16:56ZTTPS: T1005, T1081, T1004, T1112, T1158, T1088,...

Malware Analysis – evasion – a2122b575133868c70d3d5392613b310

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a2122b575133868c70d3d5392613b310SHA1: 404892eade96a6c53610cffc3119cc88e537047cANALYSIS DATE: 2022-10-30T22:17:15ZTTPS: T1088, T1089, T1112, T1082, T1005, T1081,...

Malware Analysis – evasion – a203f16e2fbc3828245edffef314ac60

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a203f16e2fbc3828245edffef314ac60SHA1: 84d8a4af0f57d0ee0e8e45a094b4b01ba23dc9aeANALYSIS DATE: 2022-10-30T22:16:51ZTTPS: T1112, T1158, T1088, T1089, T1005, T1081,...

Malware Analysis – evasion – a1074b7705c89bf62f716cd786e42150

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a1074b7705c89bf62f716cd786e42150SHA1: 07cf762b02da50ad254fe840cdecb58a00191ab9ANALYSIS DATE: 2022-10-30T22:19:00ZTTPS: T1012, T1082, T1060, T1112, T1004, T1005,...

Malware Analysis – evasion – 82efc027f30d046e66b9dd4cd3dbc5d0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 82efc027f30d046e66b9dd4cd3dbc5d0SHA1: 51e93528077fe32744d0f37283a80bc936bb0a24ANALYSIS DATE: 2022-10-30T22:18:24ZTTPS: T1060, T1112, T1004, T1082, T1158, T1088,...

Malware Analysis – evasion – 9185734b2fef95aab770aebc5f7632a0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 9185734b2fef95aab770aebc5f7632a0SHA1: f66b2a39d937a0042e347199ee99740fa78e3265ANALYSIS DATE: 2022-10-30T22:18:44ZTTPS: T1060, T1112, T1082, T1158, T1005, T1081,...

Malware Analysis – evasion – a224312dcf5d55459c3d35a535c9ad90

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a224312dcf5d55459c3d35a535c9ad90SHA1: 77b9d7386a1e308a1f957dfb05cb86b99b75c272ANALYSIS DATE: 2022-10-30T22:18:28ZTTPS: T1004, T1112, T1082, T1005, T1081, T1012,...

Malware Analysis – evasion – a0df803637fac857f959bcb4e9b0b030

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a0df803637fac857f959bcb4e9b0b030SHA1: 84c86dd3d62964beb20848d111f368b438760507ANALYSIS DATE: 2022-10-30T22:19:40ZTTPS: T1004, T1112, T1082, T1060, T1088, T1089,...

Malware Analysis – evasion – a1377c57de0d7022a1cee34c6b687e10

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a1377c57de0d7022a1cee34c6b687e10SHA1: ba1e129b1bd46955a059b5ad77bfa3f2154cdfc3ANALYSIS DATE: 2022-10-30T22:19:32ZTTPS: T1082, T1088, T1089, T1112, T1004, T1158,...

Malware Analysis – evasion – a12fa7c79be771534f226f9a03dfcae0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a12fa7c79be771534f226f9a03dfcae0SHA1: 8bab07e652b7f2c40e280dc2aca277912f54da60ANALYSIS DATE: 2022-10-30T22:19:23ZTTPS: T1060, T1112, T1005, T1081, T1088, T1089,...

Malware Analysis – evasion – a09acc23a4fe1523073aa0a2afe661e0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a09acc23a4fe1523073aa0a2afe661e0SHA1: 4db4f800ff00c408507cf35c668fa061261e2a0fANALYSIS DATE: 2022-10-30T22:19:27ZTTPS: T1112, T1082, T1088, T1089, T1005, T1081,...

Malware Analysis – evasion – 91eca7ce3b7cc8d8cf34fb7fd5ed6e90

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 91eca7ce3b7cc8d8cf34fb7fd5ed6e90SHA1: 2e3097a89da8a6915e3ce6c6c7077b80c6e65092ANALYSIS DATE: 2022-10-30T22:20:45ZTTPS: T1112, T1005, T1081, T1158, T1082, T1012,...

Malware Analysis – evasion – 8292a377db225d3f4a08b89000d357a0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 8292a377db225d3f4a08b89000d357a0SHA1: 7f7887cf1c030cf4ef240835a3d490900a52614cANALYSIS DATE: 2022-10-30T22:20:47ZTTPS: T1112, T1088, T1089, T1082, T1012, T1060,...

Malware Analysis – evasion – 830072cd2260f8810a8086add9d9c6e0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 830072cd2260f8810a8086add9d9c6e0SHA1: e1a9b7fecb8d3b7bf4723e700a46688b0b561b50ANALYSIS DATE: 2022-10-30T22:20:32ZTTPS: T1112, T1158, T1005, T1081, T1082, T1088,...

Malware Analysis – evasion – a1dfe8ef09d034241390cbdd517b9bc0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a1dfe8ef09d034241390cbdd517b9bc0SHA1: 0cbfbb906796bfd772172501ed43d7ca93be73c2ANALYSIS DATE: 2022-10-30T22:20:41ZTTPS: T1088, T1089, T1112, T1012, T1082, T1158,...

Malware Analysis – evasion – 81def23b65fd500909519a0e799c4fe0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 81def23b65fd500909519a0e799c4fe0SHA1: 75c1080ece5ac356a46094604e4034bad46a3c89ANALYSIS DATE: 2022-10-30T22:20:53ZTTPS: T1112, T1158, T1082, T1012, T1060, T1088,...

Malware Analysis – evasion – 81e53531125e224a6d5646c5f355a300

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: 81e53531125e224a6d5646c5f355a300SHA1: 376e7f14179dab72ea958d2a0b6b30f295416e10ANALYSIS DATE: 2022-10-30T22:21:03ZTTPS: T1112, T1082, T1060, T1088, T1089, T1005,...

Malware Analysis – evasion – a0bbef92886bb5d4f25d4f37303fbce0

October 31, 2022

Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: a0bbef92886bb5d4f25d4f37303fbce0SHA1: 6ea6a5ec553aaee922d747869881d0f1bc0b450cANALYSIS DATE: 2022-10-30T22:21:01ZTTPS: T1060, T1112, T1158, T1082, T1005, T1081,...

threatintel

Malware Analysis – djvu – 5cccc51e564aaed1220ca88d4d427dd3

US-CERT Bulletin (SB22-304):Vulnerability Summary for the Week of October 24, 2022

VMware warns of the public availability of CVE-2021-39144 exploit code

CISA: CISA Releases Guidance on Phishing-Resistant and Numbers Matching Multifactor Authentication

Actively exploited Windows Mark-of-the-Web zero-day received an unofficial patch

Malware Analysis – evasion – 91efa3e788805a851d3319d1c75d3770

Malware Analysis – evasion – a09d3b0d9ff6e23b97cd1d3359913ef0

Malware Analysis – evasion – a2122b575133868c70d3d5392613b310

Malware Analysis – evasion – a203f16e2fbc3828245edffef314ac60

Malware Analysis – evasion – a1074b7705c89bf62f716cd786e42150

Malware Analysis – evasion – 82efc027f30d046e66b9dd4cd3dbc5d0

Malware Analysis – evasion – 9185734b2fef95aab770aebc5f7632a0

Malware Analysis – evasion – a224312dcf5d55459c3d35a535c9ad90

Malware Analysis – evasion – a0df803637fac857f959bcb4e9b0b030

Malware Analysis – evasion – a1377c57de0d7022a1cee34c6b687e10

Malware Analysis – evasion – a12fa7c79be771534f226f9a03dfcae0

Malware Analysis – evasion – a09acc23a4fe1523073aa0a2afe661e0

Malware Analysis – evasion – 91eca7ce3b7cc8d8cf34fb7fd5ed6e90

Malware Analysis – evasion – 8292a377db225d3f4a08b89000d357a0

Malware Analysis – evasion – 830072cd2260f8810a8086add9d9c6e0

Malware Analysis – evasion – a1dfe8ef09d034241390cbdd517b9bc0

Malware Analysis – evasion – 81def23b65fd500909519a0e799c4fe0

Malware Analysis – evasion – 81e53531125e224a6d5646c5f355a300

Malware Analysis – evasion – a0bbef92886bb5d4f25d4f37303fbce0

Shield Ai Shows Off Not At All Terrifying Autonomous Vtol Combat Drone

[QILIN] – Ransomware Victim: Essential Cabinetry Group

[NOVA] – Ransomware Victim: Papsud

Cobalt Strike Beacon Detected – 101[.]35[.]223[.]90:443

Cobalt Strike Beacon Detected – 8[.]152[.]99[.]85:443

You may have missed