| 1 |
HeliosCert |
Sample analysed on #virustotal VirusTotal-Score: 66 VirusTotal: https://www.virustotal.com/gui/file/289af27ddc576588185db6b426c09f0ca36ac7c4c946cb31d8ca5ba76b381965/detection/f-289af27ddc576588185db6b426c09f0ca36ac7c4c946cb31d8ca5ba76b381965-1586997364 … Threat: Ransom_WCRY.SMALYM (TrendMicro)
|
2020-08-13 23:11:03 |
| 2 |
500mk500 |
This Any-Run link shows it is #APT #MuddyWater related sample: https://www.virustotal.com/gui/file/2ad0c8e29a364005f3aa0aaab770f919f8a65202b06721143e2d19dc6b75f323/detection … . no?
|
2020-08-13 21:45:22 |
| 3 |
HerbieZimmerman |
2020-08-13 Any ideas what this is? Based on VT hit maybe #Gracewire? Based on URLHaus. uses #GET2. Uses nasty XL4 macro as well w/oleobject embedded. Also calls copy of itself w/configuring image https://www.virustotal.com/gui/domain/transff-reddon.com/relations … https://urlhaus.abuse.ch/browse.php?search= https%3A%2F%2Fdw.long-space.com%2F%3Fhdhgjkfd-oiewourour-395-039-jfk-39485-swrkf … Sample here: https://app.any.run/tasks/adad7bd0-12c1-4ed4-ace5-93da0154a284/ …
|
2020-08-13 21:06:56 |
| 4 |
HeliosCert |
Sample submitted 2020-08-13 18:25:01 Dionaea Honeypot Protocol: smbd Sources: ::ffff:144.91.124.22 5c3d4cf81eb7955d3915d8c41a36c7bc41464e4a50b7a8846ff6bc6257f78fb9 #malware #cyber #security
|
2020-08-13 20:16:08 |
| 5 |
HeliosCert |
Sample analysed on #virustotal VirusTotal-Score: 65 VirusTotal: https://www.virustotal.com/gui/file/671422d250c9042509ad3023d01485eb667a257b1d2de16c994c7665f75557f8/detection/f-671422d250c9042509ad3023d01485eb667a257b1d2de16c994c7665f75557f8-1593610518 … Threat: Ransom_WCRY.SMALYM (TrendMicro)
|
2020-08-13 20:01:08 |