Posted by malvuln on Apr 19

Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/d7648b676dd139d1b7ba781816726510.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: HEUR.Backdoor.Win32.Generic
Vulnerability: Unauthenticated Open Proxy
Description: The backdoor creates a Windows service backed by an executable
named “1314.exe”, it lives under C:WINDOWS and listens on TCP ports 1080
and 8080….
Read More – Full Disclosure


By |2021-04-20T03:20:02-04:00April 20th, 2021|