Daily
1. Malware “Trojan.Win32.Invader” has been observed in a machine. The source IP is currently Offline - Open.
2. Below domain has been reported by Akamai as malicious. Reputation has been shared with team for further suggestion.
reward2419[.]getyourchance62[.]loan
3. OTRS 2018050523035101 has been raised for Bluecoat alert reported for malware 'Suspicious:Trojan.Script.Generic' and has been assigned to IR.OM team with necessary recommendations - Open.
4. User ‘Abhay Kadam’ has reported the suspicious mail. Post analysis, we have observed that the email is a Spam. We have provided recommendations and awareness points to the user along with the analysis report. OTRS 2018050523027888 has been raised for the same - Closed.
Incident report ‘AXI-ISA-333’ has been created for the same.
5. OTRS 2018050523027431 has been raised for rogue application reported by RSA. The App URL has been initiated for takedown. Incident Report ‘AXI-ISA-334’ has been created for the same - Open.
hxxp://www.appszoom.com/android-app/all-bank-balance-enquiry-bknlgk.html
6. OTRS 2018050523027735 has been raised for rogue application reported by RSA. The App URL has been initiated for takedown. Incident Report ‘AXI-ISA-335’ has been created for the same - Open.
hxxp://www.appszoom.com/android-app/all-bank-account-balance-check-app-bknxgf.html
7. OTRS 2018050523027806 has been raised for Rogue application reported by RSA. The App URL has been submitted to AppSec Team for validation - Open.
hxxps://play.google.com/store/apps/details?id=com.credencapp
8. OTRS 2018050523035502 has been raised for Rogue application reported by RSA. The App URL has been submitted to AppSec Team for validation - Open.
hxxps://play.google.com/store/apps/details?id=com.vermajiappdeveloper.Total_USSD_Code
9. OTRS 2018050523023917 has been raised for smokescreen alert over port 443 - Open.
10. OTRS 2018050523024069 has been raised for smokescreen alert over port 443 - Open.
11. OTRS 2018050523024265 has been raised for smokescreen alert over port 443 - Open.
12. OTRS 2018050523024363 has been raised for smokescreen alert over port 443 -Open.
13. OTRS 2018050523024514 has been raised for smokescreen alert over port 443 - Open.
14. OTRS 2018050523024685 has been raised for smokescreen alert over port 443 -Open.
15. OTRS 2018050523036798 has been raised for social detection alert reported by Netcraft and has been sent to marketing team for validation - Open.
hxxps://www.instagram.com/bank.axis.
16. Akamai Weekly Report (29th Apr- 05th May) has been prepared.
17. Smokescreen TI Weekly Analysis Report (29th Apr- 05th May) has been prepared. Three unique malicious IP's were observed in last 7 days and have been blocked at the firewall.