![]() YARA signature "ELF_Linux_Torte" classified file "475b0da0d8eaelf.bin" as "torte,botnet" based on indicators: "Mozilla/5.0 (Windows U Windows NT 5.1 en-US rv:1.7.6),Mozilla/5.0 (Windows U Windows NT 5.1 zh-CN (Author: signature "ELF_Linux_Torte_domains" classified file "475b0da0d8eaelf.bin" as "torte,botnet" based on indicators: "," (Author: signature "Linux_Dirt圜ow_Exploit" classified file "475b0da0d8eaelf.bin" as "exploit,dirtycow" based on indicators: "4889d641b9000000004189c0b902000000ba01000000bf00000000,e800fcffff488b45e8be000000004889c7e800fcffff488b45f0be000000004889,e800fcffffb800000000,madvise(map,100,MADV_DONTNEED) ,map,SEEK_SET) ,mmap %x,procselfmem %d,madvise %d, failed to patch payload, failed to win race condition., waiting for reverse connect shell.,/proc/self/mem,/proc/%d/mem,/proc/self/map,/proc/%d/map" (Reference:, Author: Florian Roth) ![]() " 2.2.2X-Mining-Extensionscpuminer 2.2.3X-Mining-ExtensionsUfasoft bitcoin-miner/0.20stratumsoftware\\microsoft\\systemcertificates\\spc\\.co.ukSOFTWARE\\Vitalwerks\\\\microsoft\\internet account managersoftware\\microsoft\\identitycrl\\credsSecurity\\Policy\\.dbcert8.dbke圓.32.dllNetShareGetInfoNetShareEnumultravnc.iniSta" (Indicator: "" File: "475b0da0d8eaelf.bin")
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |