Posted by malvuln on May 07
Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/3a36d7ab34b3241aa2a9072700e0cb7c.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Packed.Win32.Black.d
Vulnerability: Unauthenticated Open Proxy
Description: The malware listens on TCP ports 1080 and 8080 and drops a
hidden executable named “Hacker.com.cn.exe” under Windows dir” that runs
with SYSTEM integrity….
– Read More – Full Disclosure