Jump to content

Eset Not Detecting Qbot Deploying Follina CVE-2022-30190 Exploit

itman
 Share

Recommended Posts

itman

itman 1,406

Posted
Posted (edited)

First, no ESSP LiveGuard submission on the .doc file.

Ref.: https://www.virustotal.com/gui/file/d20120cc046cef3c3f0292c6cbc406fcf2a714aa8e048c9188f1184e4bb16c93/detection/f-d20120cc046cef3c3f0292c6cbc406fcf2a714aa8e048c9188f1184e4bb16c93-1654617438

Malware sample attached. Password is infected.

d20120cc046cef3c3f0292c6cbc406fcf2a714aa8e048c9188f1184e4bb16c93.zip

Edited by itman
Link to comment
Share on other sites
  • itman changed the title to Eset Not Detecting Qbot Deploying Follina CVE-2022-30190 Exploit
  • Administrators
Marcos

Marcos 4,301

Posted
  • Administrators
Posted

A detection (Win32/Exploit.CVE-2022-30190.H) was added at 13:00 CEST, included in update 25402 which is currently being uploaded on update servers. The url with payload was blocked at about 13:10 CEST.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...