what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 100 RSS Feed

Files

Trojan-Ransom.Thanos MVID-2022-0607 Code Execution
Posted May 17, 2022
Authored by malvuln | Site malvuln.com

Thanos ransomware looks for and executes DLLs in its current directory. Therefore, we can potentially hijack a DLL to execute our own code and control and terminate the malware pre-encryption. The exploit DLL will check if the current directory is "C:\Windows\System32" and if not we grab our process ID and terminate. We do not need to rely on hash signatures or third-party products as the malware's own flaw will do the work for us. Endpoint protection systems and or antivirus can potentially be killed prior to executing malware, but this method cannot as there is nothing to kill the DLL that just lives on disk waiting. From a defensive perspective you can add the DLLs to a specific network share containing important data as a layered approach. All basic tests were conducted successfully in a virtual machine environment.

tags | exploit
systems | windows
SHA-256 | 5533b7c50594024a4e1314f9732abe9064dda34616ffe16430cdf34c04e4c992

Related Files

Backdoor.Win32.Ketch.h MVID-2021-0101 Buffer Overflow
Posted Feb 22, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Ketch.h malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | windows
SHA-256 | 2abc44ddfa9d0b7263959ae5ff30bf3a21837b0e7e1c607d8886493459247df3
Backdoor.Win32.Inject.tyq MVID-2021-0100 Insecure Permissions
Posted Feb 22, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Inject.tyq malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | bf6ea50de9c992e63ecd9bb1513eaba793264ba0d8a4f0670e8fd53b8afecfa1
Backdoor.Win32.Bionet.10 MVID-2021-0099 Anonymous Login
Posted Feb 19, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Bionet.10 malware has an ftp service that allows for anonymous login.

tags | exploit
systems | windows
SHA-256 | 404aa1cc25a484f04ec04f3fcdd9b35295adf133838edc77ca4e63911e3d6bde
Backdoor.Win32.DarkKomet.apcc MVID-2021-0098 Insecure Permissions
Posted Feb 19, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.DarkKomet.apcc malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | aecb3a0c272436b731621f6bcd2825f3baf0858666fecf06db2f2a9d8b681638
Backdoor.Win32.DarkKomet.bhfh MVID-2021-0097 Insecure Permissions
Posted Feb 19, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.DarkKomet.bhfh malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | 5093711b0c6d00b1510fcead1c8a97d6fde81a882fde3001e630e1feeccf901a
Backdoor.Win32.Agent.aak MVID-2021-0096 Buffer Overflow
Posted Feb 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.aak malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | windows
SHA-256 | ff1a91e588666b3bcb88a08c2db2ac1c04d80eeaa528374423c23c387be8602e
Backdoor.Win32.Agent.aak MVID-2021-0095 Code Execution / Cross Site Request Forgery
Posted Feb 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.aak malware suffers from code execution and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, code execution, csrf
systems | windows
SHA-256 | 07877b46ba2c779b236c2561cd70d8a9f3b6e327ed86d6f5a164b87adc2a81d0
Backdoor.Win32.Agent.aak MVID-2021-0094 Hardcoded Credentials
Posted Feb 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.aak malware suffers from a hardcoded credential vulnerability.

tags | exploit
systems | windows
SHA-256 | d384b41292fe358452a4a3a80b168dead2cf891a7677d24a3838cd59e7e78221
Backdoor.Win32.Burbul.b MVID-2021-0093 Anonymous Login
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Burbul.b malware has an ftp service that allows for anonymous login.

tags | exploit
systems | windows
SHA-256 | eacd817de5297bfb135a0355f799bafec34151bbf8e3f6ea6560cc32d694a5b8
Backdoor.Win32.Indexer.a MVID-2021-0092 Denial Of Service
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Indexer.a malware suffers from a denial of service vulnerability.

tags | exploit, denial of service
systems | windows
SHA-256 | d48a8459e1ba4c181989347d8c267adcf50e5532c2ce2473ef00b11baab6e68f
Backdoor.Win32.Indexer.a MVID-2021-0091 Hardcoded Credentials
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Indexer.a malware has a backdoor with weak hardcoded credentials.

tags | exploit
systems | windows
SHA-256 | 75d07c22ee885ccdb973aa8ca9f378855c5b303ddbc339cb577013a21100e03a
Backdoor.Win32.Bifrose.ahvb MVID-2021-0090 Insecure Permissions
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Bifrose.ahvb malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | bb9f15193f65ac95f44d88b0e2811648f4d5f5e78134baf5e273c723603eb732
Backdoor.Win32.Azbreg.aant MVID-2021-0089 Insecure Permissions
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Azbreg.aant malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | 3f3b586377091c5728cc4ed6050e6e4d141deb1e6711e3fc59e9739723b01122
Trojan-Spy.Win32.WinSpy.wlt MVID-2021-0087 Insecure Permissions
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Trojan-Spy.Win32.WinSpy.wlt malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | ee41322d396b9353808b98f8ec6e507cafd8ed0f4d9af3255a6d5ef01f3a21ac
Backdoor.Win32.Cabrotor.21 MVID-2021-0088 Insecure Permissions
Posted Feb 16, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Cabrotor.21 malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | c2d956f1d6f57c163208002771f8edd75cfc357f0d3a375becbe49cd2f96dd97
Backdoor.Win32.Cafeini.08.b MVID-2021-0086 Missing Authentication
Posted Feb 15, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Cafeini.08.b malware suffers from a missing authentication vulnerability.

tags | exploit
systems | windows
SHA-256 | 42b334aea82507140ecc84d70e3e827069455b64df4111d0bb8d29ceb5e02d14
Backdoor.Win32.Backlash.101 MVID-2021-0085 Missing Authentication
Posted Feb 13, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Backlash.101 malware suffers from a missing authentication vulnerability.

tags | exploit
systems | windows
SHA-256 | 63843432e1b6f0a7fb44c3fb0f691735a6fa62d448888ba7c921659dbfa6b183
Backdoor.Win32.BackAttack.18 MVID-2021-0084 Missing Authentication
Posted Feb 11, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.BackAttack.18 malware suffers from a missing authentication vulnerability that can allow for remote screenshots, system restart, and more.

tags | exploit, remote
systems | windows
SHA-256 | f1d1181c7b20a45dade4acd19939dbe503d5a1101652d99916a11ccf32e27c23
Backdoor.Win32.Augudor.a MVID-2021-0083 Code Execution
Posted Feb 11, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Augudor.a malware suffers from a code execution vulnerability.

tags | exploit, code execution
systems | windows
SHA-256 | 9ea94d39200a50f8a70a8edc2d711b64cd27c932ffce9d43b1f8d33b414ae1d7
Backdoor.Win32.Aphexdoor.LiteSock MVID-2021-0082 Buffer Overflow
Posted Feb 10, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Aphexdoor.LiteSock malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | windows
SHA-256 | 8b6ccade23d3ec6d18ecf166c4a5516158a541bd323da2a669ba9d7a232ab203
Backdoor.Win32.NetTerrorist MVID-2021-0081 Authentication Bypass / Code Execution
Posted Feb 9, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.NetTerrorist malware suffers from bypass and code execution vulnerabilities.

tags | exploit, vulnerability, code execution
systems | windows
SHA-256 | a84e847103256104dc3efdecf379b465270c3106e0b1b1c48f64df43bc8e92b7
Trojan.Win32.Cafelom.bu MVID-2021-0080 Heap Corruption
Posted Feb 9, 2021
Authored by malvuln | Site malvuln.com

Trojan.Win32.Cafelom.bu malware suffers from a heap corruption vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | c495636b818cd7c3b7660d9376094f54b60fc76dab0d98070462b30ed384dc61
Backdoor.Win32.Wollf.15 MVID-2021-0079 Missing Authentication
Posted Feb 8, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Wollf.15 malware suffers from a missing authentication vulnerability.

tags | exploit
systems | windows
SHA-256 | c41d4e61e238652534263ff190da9b31485a2ea670fba91accb2732c0271f2be
Trojan-Spy.Win32.WinSpy.vwl MVID-2021-0078 Insecure Permissions
Posted Feb 8, 2021
Authored by malvuln | Site malvuln.com

Trojan-Spy.Win32.WinSpy.vwl malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | 026c6b0c349e86e43c5a43835c5941f5db65347448416bb24177660d2b517527
Trojan-Spy.Win32.WebCenter.a MVID-2021-0077 Information Disclosure
Posted Feb 8, 2021
Authored by malvuln | Site malvuln.com

Trojan-Spy.Win32.WebCenter.a malware suffers from an information leakage vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | bbe687c0905aad324c811b55eb6f7b45bbca79de22771d469b8334329c6242a8
Page 1 of 4
Back1234Next

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close