Posted by malvuln on Jan 24

Discovery / credits: Malvuln – malvuln.com (c) 2022
Original source:
https://malvuln.com/advisory/ca294b2f778abc14fef6313b3cea7155.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: VulturiBuilder
Vulnerability: Insecure Permissions
Description: The malware writes an .EXE with insecure permissions under c:
drive granting change (C) permissions to the authenticated user group.
Standard users can rename the executable dropped…
Read More – Full Disclosure


By |2022-01-24T20:19:06-05:00January 24th, 2022|