Posted by malvuln on Feb 01
Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/ccd3e54eb76b3349db57481a0fe68b35.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Backdoor.Win32.Wollf.14
Vulnerability: Missing Authentication
Description: Wollf.14 listens on TCP port 7614 and creates a service “wrm”
running as SYSTEM. The backdoor then allows casual intruders to take
control of the infected system…
– Read More – Full Disclosure