Posted by malvuln on Mar 26

Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/c25393545e5ead3a35996ef9a887bd34.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Kwak.12
Vulnerability: Remote Command Execution
Description: The backdoor runs an FTP server that listens on TCP port
37885. The malware is packed using UPX which is trivial to unpack by using
upx -d command, after observe various…
Read More – Full Disclosure


By |2021-03-26T10:19:14-04:00March 26th, 2021|