IrishMASMSApr 23, 2024

the #malware for today was a unique upload to #VT
Under the guise of an #RFQ sourced from 155.94.211.180 - our "friends" at #quadranet #quadranetIsACesspool #quadranetDoesNotRespondToAbuseComplaints

Archive unpacked: RFQ.PDF.lzh (#application/x-rar-compressed; version=4, 790.57 kB)
#MD5:
bfd11c09d12e016a72838e3368da964a
#SHA1:
00654c1b168a06474a3a9d1ea24565f75ccb219f
#SHA256:
127363d38a9a18187a0e9244d31ab1804bc25c32638d207b53e4bdfdde44e14e
#sha512:
e221f2d41f1448325a0652c69650b7abc50e10419230659929044f103b39abc01265be9fa7c7e5af80f06a2077911d409cccda86d2581d899aa67920d5c6eaa4

Detected malicious per https://www.filescan.io/uploads/6628249675339da04f9d43fb
expands to RFQ.PDF.exe
https://www.filescan.io/uploads/6628249675339da04f9d43fb/reports/1bab72f3-3ef2-4462-8437-79e946c52bee/overview

#VT has 30/64 for detection as #trojan.#zmutzy/autoit
https://www.virustotal.com/gui/file/127363d38a9a18187a0e9244d31ab1804bc25c32638d207b53e4bdfdde44e14e/detection/f-127363d38a9a18187a0e9244d31ab1804bc25c32638d207b53e4bdfdde44e14e-1713906829

#spammers #scammers #malicious #suspectfiles
#malware #triage #ioc #_ioc #infosec #informationSecurity #IncidentResponce #IR
#spam #infosec #infomantionSecurity #virustotal

Filescan.IO - Next-Gen Malware Analysis Platform

Submit malware for analysis on this next-gen malware assessment platform. Filescan GmbH develops and licenses technology to fight malware with a focus on Indicator-of-Compromise (IOC) extraction at scale.

IrishMASMSApr 16, 2024

The other bogus #attachment is a #fakeInvoice from #geeksquad

the #fraudster call center numbers are:
844-799-3440
719-297-8098

#MD5
073d0627ecd901979b2f7daca3812ccb
#SHA-1
91279035cd7c98e900cb61ed7c2567701d9d1e41
#SHA-256
70c263efabeb149c9d9d91c4d2f21162ad5f9537eb59cfa0b922780465dcc7c1

Bill5252067237.pdf

https://www.virustotal.com/gui/file/70c263efabeb149c9d9d91c4d2f21162ad5f9537eb59cfa0b922780465dcc7c1/detection

https://www.filescan.io/uploads/661f0200c5dabc22b200d489/reports/ca8370b2-4fbd-4ddb-8182-659606d54368/overview

The #SRC #IP of the email was 72.11.157.148 an #openproxy at (of course) #quadranet

#spammers #scammers #malicious #suspectfiles
#malware #triage
#spam #infosec #infomantionSecurity #virustotal

VirusTotal

VirusTotal

IrishMASMSApr 10, 2024

today's #malware submission

https://www.filescan.io/uploads/6616c4a3279698d249ed44de/reports/7f0283ad-ac3f-4c6f-a095-0908860e1747/overview

from our "friends" at #quadranet
in #LA
another #openproxy
#spammers #phishing #malicious #maliciousexe

Filescan.IO - Next-Gen Malware Analysis Platform

Submit malware for analysis on this next-gen malware assessment platform. Filescan GmbH develops and licenses technology to fight malware with a focus on Indicator-of-Compromise (IOC) extraction at scale.

John KristoffSep 7, 2023

Many reports of hosting provider #QuadraNet (#AS8100) spamming recently shuttered provider DediPath (#AS35913) customers.

"[...] I am an Entreprise Account Manager here at QuadraNet. I heard you might be in need of a new data center partner to meet your needs. Don't worry, we've got you covered!"

Tarnkappe.infoMar 31, 2022
📬 LiquidVPN: No-Log-VPN-Anbieter muss Filmstudios 14 Mio USD zahlen #Filesharing #Rechtssachen #DMCA #KerryCulpepper #LiquidVPN #Popcorntime #Quadranet #RichterinBethBloom #Urheberrechtsverletzung https://tarnkappe.info/artikel/rechtssachen/liquidvpn-no-log-vpn-anbieter-muss-filmstudios-14-mio-usd-zahlen-219158.html
LiquidVPN: No-Log-VPN-Anbieter muss Filmstudios 14 Mio USD zahlen

Wegen Urheberrechtsverletzung und DMCA-Verletzungen muss LiquidVPN Schadensersatz an Filmstudios in Höhe von über 14 Mio USD zahlen.

Tarnkappe.info
TorrentFreak MirrorMar 25, 2022
Court: Null-Routing is Not a Practical Anti-Piracy Measure https://torrentfreak.com/court-null-routing-is-not-a-practical-anti-piracy-measure-220325/ #quadranet #Lawsuits #Piracy
Court: Null-Routing is Not a Practical Anti-Piracy Measure

A court in Florida says that null-routing IP-addresses is not a practical or effective measure to combat piracy.

TF Publishing
Tarnkappe.infoMar 14, 2022
📬 TorGuard: VPN-Anbieter muss P2P-Traffic auf US-Servern blockieren #Filesharing #Rechtssachen #Quadranet #socks5proxy #Torguard #vpnanbieter https://tarnkappe.info/artikel/filesharing/torguard-vpn-anbieter-muss-p2p-traffic-auf-us-servern-blockieren-217063.html
TorGuard: VPN-Anbieter muss P2P-Traffic auf US-Servern blockieren

Der anonyme Mailing- und VPN-Anbieter TorGuard muss seine amerikanischen VPN-Server kastrieren. P2P ist seit März 2022 nicht mehr möglich.

Tarnkappe.info
TorrentFreak MirrorDec 14, 2021
Hosting Company Defeats Filmmakers’ “VPN Piracy” Lawsuit in Court https://torrentfreak.com/hosting-company-defeats-filmmakers-vpn-piracy-lawsuit-in-court-211214/ #RepeatInfringer #quadranet #Lawsuits
Hosting Company Defeats Filmmakers’ “VPN Piracy” Lawsuit in Court

Hosting company Quadranet has scored a crucial victory in a "VPN piracy" lawsuit filed by several film companies earlier this year.

TF Publishing
TorrentFreak MirrorSep 10, 2021
Hosting Company Quadranet Asks Court to Dismiss ‘VPN Piracy’ Lawsuit https://torrentfreak.com/hosting-company-quadranet-asks-court-to-dismiss-vpn-piracy-lawsuit-210910/ #RepeatInfringer #repeatinfringer #quadranet #Lawsuits #vpn
Hosting Company Quadranet Asks Court to Dismiss 'VPN Piracy' Lawsuit * TorrentFreak

Hosting company Quadranet has asked a Florida federal court to dismiss a "VPN piracy" lawsuit filed by several independent film companies.