Posted by malvuln on Jan 25

Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/91c02a95839a76a5d2e335cded7112a9.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Wollf.c
Vulnerability: Hardcoded Backdoor Password
Description: The backdoor creates a service “sysocm.exe” running with
SYSTEM integrity. The sysocm service listens for commands on TCP port
7754. The backdoors remote…
Read More – Full Disclosure


By |2021-01-26T04:19:06+00:00January 26th, 2021|