JAMESWT
@JAMESWT_MHT#Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcW
Similar User
@malwrhunterteam
@James_inthe_box
@executemalware
@struppigel
@Arkbird_SOLG
@pr0xylife
@abuse_ch
@Cryptolaemus1
@blackorbird
@ViriBack
@reecdeep
@ShadowChasing1
@hasherezade
@anyrun_app
@Myrtus0x0
Inaugurato un nuovo TAG "SPAM-ITA" in @abuse_ch per tracciare i samples con target Italiano ricevuti tramite Emails Malevole di Spam 💯bazaar.abuse.ch/browse/tag/Spa…💯 Ultimi 2 mesi, i samples più vecchi rimangono con i tags specifici tipo bazaar.abuse.ch/browse/tag/age… ecc
Related #ConnectWise Sample bazaar.abuse.ch/sample/4db7803…
The ScreenConnect installer it gave: 4db7803a3142fb22ba63631612943f91459eceb4e1ded7b88808f9cec74f87b0
ZIP>SVG>URL>ZIP>PW LOP852>#AsyncRat ⛔️C2 powerupsnew.]dynuddns].com Drop ⛔️https://i0004.clarodrive.]com/s/siEsdDALjZ665wE/ Samples ❇️bazaar.abuse.ch/browse/tag/pow… AnyRun 🔱app.any.run/tasks/77b108db…
"DEMANDA NOTIFICACION FRAUDE FISCAL\.zip": 3ad130b7dfd420c304d97e267e1b9bce6ace72edb9cb1749700902b885817c88 -> "DEMANDA NOTIFICACION FRAUDE FISCAL.svg": 01ad5238f803563f1635fdadfef47f97c0c2c8e0c90111b625a248d44f9017f9 @1ZRR4H
Via, @ransomfeednews 🆕 #Everest: 121° attacco #Ransomware del 2024 (2° nel mese di Novembre) ad un target 🇮🇹 Bio-Clima Service S.R.L. | bioclimaservice.it Italy (Bernareggio - Monza Brianza) 🔗 ransomfeed.it/index.php?page… #Ransomfeed è anche su #Telegram: 🔗…
🚨 #AGCOM vuole fermare lo #spoofing: proposta una misura per bloccare le chiamate internazionali che si spacciano per numeri italiani. 🔒 Un passo concreto per proteggere i cittadini dalle frodi, a differenza del costoso (e inefficace) #PiracyShield 🏴☠️ dday.it/redazione/5111…
🔴#Phishing @Agenzia_Entrate Rimborso fiscale - IT1X112024609163652609163652 📧🎯🇮🇹 💶1073,88 € 🔗https: //auth-serveronline-serv1.de/7aIT03j82stf28&sp_aqd=d2lkZ2V0TmFtjhghjHGyuUygHjuyTtyYtFGbXJhaQ&th=2/ #ASN @CloudflareHelp
"Invio Ordine Fornitore Nr. 2024.1797" spam email spread #SnakeKeylogger Samples bazaar.abuse.ch/browse/tag/Spa… AnyRun app.any.run/tasks/102c286f… Drop https://filetransfer[.io/data-package/7pdXjNKP/download
2024-11-14 (Thursday): #RaspberryRobin infection chain uses WebDAV share, today at 2z[.]si@ssl\u\. Victim downloads a zip archive, then extracts and double-clicks an HTA file, which loads and runs a Raspberry Robin DLL from the WebDAV share. Details at bit.ly/3O9XMwA
Pivoting on this information, I generated a #RaspberryRobin infection using the #WebDAV server. I posted a #pcap with some fresh malware samples at malware-traffic-analysis.net/2024/11/14/ind…
@zenlayer please suspend them, thanks a.beatrizteixeiranutri.com/?id=a a.claritascosmeticos.com.br/?id=a 🇮🇹 restricted ht @luc4m @malwrhunterteam @JAMESWT_MHT @dubstard @YourAnonRiots @andsyn1 @UK_Daniel_Card @BeeHiveCyberSec @Malcoreio @douglasmun
#phishing 🇮🇹 register full identify theft: 1⃣ user:pass 2⃣ cc 3⃣ id documents (!) abusing @Shufti_Pro IoC: 16f9032b.claritascosmeticos,com,br[/xhr,/collecte,/pg1].php->shufti id @illegalFawn @JAMESWT_MHT @phishunt_io @PhishKitTracker @ActorExpose
#RaaS #ransomware 🫢🤦♂️ Install in your @kalilinux and... "Ransomware Flexibility" ~ Current Directory Encryption ~ Entire User Files Encryption ~ Persistent Infection With Annoying PopUp Banner ~ Persistent Hidden Ransomware (Continuos Encryption). github.com/M4xSec/curse2d…
#phishing 🇮🇹 register full identify theft: 1⃣ user:pass 2⃣ cc 3⃣ id documents (!) abusing @Shufti_Pro IoC: 16f9032b.claritascosmeticos,com,br[/xhr,/collecte,/pg1].php->shufti id @illegalFawn @JAMESWT_MHT @phishunt_io @PhishKitTracker @ActorExpose
Ha! Elon is already abusing its government position. You need Twitter Premium to send a CV for DOGE. Nice.
Rilevate vulnerabilità critiche su Smart #POS #Android computersecuritynews.it/rilevate-vulne…
Samples 👇 bazaar.abuse.ch/sample/6fadbba… bazaar.abuse.ch/sample/dfff1a0… bazaar.abuse.ch/sample/0f23855…
distro https://azuredcloud.]world/ https://memorun.]life/medk.php c2's - BRC4 https://burjog.]com:9043/matrix.php https://samomol.]com:9043/pankihoy.php Latro: https://rolefenik.]com https://ergiholim.]com https://bestmarsgood.]com https://cerwintifed.]com (2/3) 👇
United States Trends
- 1. Jake Paul 995 B posts
- 2. #Arcane 230 B posts
- 3. Jayce 6.524 posts
- 4. Good Saturday 26,4 B posts
- 5. #SaturdayVibes 3.140 posts
- 6. Serrano 248 B posts
- 7. #saturdaymorning 2.114 posts
- 8. #PlutoSeriesEP5 133 B posts
- 9. Vander 16,9 B posts
- 10. AioonMay Limerence 108 B posts
- 11. Pence 82,1 B posts
- 12. #SaturdayMotivation 2.074 posts
- 13. maddie 21,3 B posts
- 14. WOOP WOOP 1.409 posts
- 15. John Oliver 14,5 B posts
- 16. Caturday 7.500 posts
- 17. Jinx 111 B posts
- 18. Fetterman 37 B posts
- 19. Father Time 10,8 B posts
- 20. He's 58 31,1 B posts
Who to follow
-
MalwareHunterTeam
@malwrhunterteam -
James
@James_inthe_box -
ExecuteMalware
@executemalware -
Karsten Hahn
@struppigel -
Arkbird
@Arkbird_SOLG -
proxylife
@pr0xylife -
abuse.ch
@abuse_ch -
Cryptolaemus
@Cryptolaemus1 -
blackorbird
@blackorbird -
Dee
@ViriBack -
reecDeep
@reecdeep -
Shadow Chaser Group
@ShadowChasing1 -
hasherezade
@hasherezade -
ANY.RUN
@anyrun_app -
Myrtus
@Myrtus0x0
Something went wrong.
Something went wrong.