XWorm Trojan version 2.1 suffers from a denial of service condition due to a null pointer vulnerability.
218bd6226ffba65f996ca7ad7af99a05782d1270eea9553e6c70e53ec943a018Trojan-Dropper.Win32.Decay.dxv (CyberGate 1.00.0) malware suffers from an insecure proprietary password encryption vulnerability.
327cdad4f54bb339def30383a6e9ad6ba1713e20fa30cdbaf1573da6857d4dfeTrojan.Win32.DarkNeuron.gen malware creates an IPC pipe with a NULL DACL allowing RW for the Everyone user.
419a95e24053a48a5b8a151771f5d30d68d5dbe8ac113c538ae6b1f007c00d2aTrojan.Win32.Platinum.gen malware suffers from a code execution vulnerability.
cdc9993c4bb438c0123a75bf753431e3118f0f97de1d721144c5ddb34cf6a07eHEUR:Trojan.MSIL.Agent.gen malware suffers from an information disclosure vulnerability.
e2541968fed4764deda9f626a5dd6d150f8556edd06d7b191deae236b82a62c2Trojan.Ransom.Ryuk.A ransomware looks for and executes DLLs in its current directory. Therefore, we can potentially hijack a DLL, execute our own code, and control and terminate the malware pre-encryption. Once loaded the exploit dll will check if the current directory is "C:\Windows\System32" and if not, we grab our process ID and terminate. All basic tests were conducted successfully in a virtual machine environment.
cf8ca0f9491742132b26f99723587a07bd7827506a1fb18e871a77bfbc3b9a62Trojan-Dropper.Win32.Corty.10 malware suffers from an insecure credential storage vulnerability.
32271f7a5d8be605d0185b7cf8397b7bf3093ad269844c0104016e34a6185027Trojan-Ransom.Win32.Hive.bv malware suffers from a code execution vulnerability.
f83469a387bb85b1095ec29c4bce40b4dee2ed888fd5d49f25e84791155b9806Trojan.Win32.Autoit.fhj malware creates two processes "xservice.exe" and a child process "xps.exe". The process creates an IPC pipe with a NULL DACL allowing RW for the Everyone user group.
9841ae12eb6bf5ae767a59bd72cbbd7fd293da629995025465c618d5121bbc7eTrojan-Spy.Win32.Pophot.bsl malware suffers from an insecure permissions vulnerability.
d84abac25b9b004380790dd21ceec9c49b73c59db79cee24d39decbe0e1623e1Trojan.Win32.Autoit.fhj malware suffers from an insecure permissions vulnerability.
0f6155ea2513333fd3502daa57841369a525497799193023cf1e190924b6beefTrojan-Mailfinder.Win32.VB.p malware suffers from an insecure permissions vulnerability.
eccb9f610544b46bcdf27fabac4f1f936099cd8c6b21232d4171889d289f6dd4Trojan-Proxy.Win32.Symbab.o malware suffers from a heap corruption vulnerability.
d87eadfc59cb93da41ff57f425f1d203ea3db932253b3a8c23cde42e7b31c47cTrojan-Banker.Win32.Banbra.cyt malware suffers from an insecure permissions vulnerability.
59d78448228c37d3ef646c8d1875471e29b3ea9f4f7baf50d7b0322510692dedTrojan-Banker.Win32.Banker.agzg malware suffers from an insecure permissions vulnerability.
1876a4e6434c2516144ce66e1f105fb0ab5f8cd4fd16271c066310d836f2d9c2Trojan-Downloader.Win32.Agent malware suffers from an insecure permissions vulnerability.
ae8f3ba20d2bc86c8d5582c66c01389075677ff6a3c6b3d0b14a4c7de160bb24Trojan-Downloader.Win32.Small.ahlq malware suffers from an insecure permissions vulnerability.
350196a679952271a1b8644768524b4bf527b9e4f5ddeda4fe2c4c1f9b2934c4Trojan-Banker.Win32.Banker.heq malware suffers from an insecure permissions vulnerability.
ef387db61428ff8d6e4c95704ea36c710cb194d1daa0bc32afd3292ca620a65eTrojan.Win32.TScash.c malware suffers from an insecure permissions vulnerability.
69487eb38af16801edd3360296f7b2ff32a4375bd9ccb641d55d125bb96bd6f7Trojan.Win32.Cosmu.abix malware suffers from an insecure permissions vulnerability.
59205eeb61b229c06ebcfdf924970b39bc5b177114f6ed95cc50c957ece1ca5aTrojan-Spy.Win32.Zbot.aawo.Zeus-Builder malware suffers from an insecure permissions vulnerability.
c68d33d4662620076c511a94c5c24ab8841bc6d060e7cced62cf12c97e5f6761Trojan.Win32.Mucc.ivk malware suffers from an unquoted service path vulnerability.
6aeff1461904ffcb843da2727bbc7484535a976547ef7c746da6695da94c34cbTrojan.Win32.SkynetRef.y malware suffers from an unauthenticated open proxy vulnerability.
f4bbaaa263e732f097f7bd71795dd8b2ed4c55c9b8842d79b38febc5cebe10efTrojan.Win32.SkynetRef.x malware suffers from an unauthenticated open proxy vulnerability.
31a37b4dda98617365616b9644b17b51f33ae12a682aca0d891ae01a935c31faTrojan.Win32.Servstar.poa malware suffers from an unquoted service path vulnerability.
18eb344f1348a88d4b0c312aef38c9a8cc6f98bde9406db328b44e856264d21d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed