Posted by malvuln on Jan 03
Discovery / credits: malvuln – Malvuln.com (c) 2021
Original source:
http://malvuln.com/advisory/099a169f81089dc493ea300ef0309f70.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Trojan.Win32.Bayrob.cgau
Vulnerability: Insecure Permissions EoP (SYSTEM)
Description: Change permissions are granted to authenticated users on
the C:chvlcpvyoh dir housing the malware running with SYSTEM
integrity. The trojan creates Windows…
– Read More – Full Disclosure