Posted by malvuln on Mar 26

Discovery / credits: Malvuln – (c) 2021
Original source:
Contact: malvuln13 () gmail com

Threat: Backdoor.Win32.Kwak.12
Vulnerability: Authentication Bypass
Description: The backdoor runs an FTP server that listens on TCP port
37885. The program acts like a typical FTP server and prompts for logon.
However, anyone can seemingly use any…
Read More – Full Disclosure

By |2021-03-26T10:19:14-04:00March 26th, 2021|