Posted by malvuln on Jun 04
Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/e677149c35cbba118655d9b133da8827.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Backdoor.Win32.NetSpy.10
Vulnerability: Heap Corruption
Description: The malware listens on TCP port 7306 and drops an executable
named “SPYNOTIFY.EXE” under SysWOW64 dir. Third-party attackers who can
reach the server can send a…
– Read More – Full Disclosure