HEUR.Backdoor.Win32.Agent.gen / Insecure Permissions – on July 13, 2021 at 2:47 pm

Posted by malvuln on Jul 13

Discovery / credits: Malvuln – malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/db0b3f4aeccb8d26f14b915a9e2529b4.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: HEUR.Backdoor.Win32.Agent.gen
Vulnerability: Insecure Permissions
Description: The malware creates a dir with insecure permissions under c:
drive and grants change (C) permissions to the authenticated user group.
Standard users can rename the…
– Read More – Full Disclosure

Protect

Defend

Respond