Subscribe via feed.

Trojan.Win32.Autoit.fhj MVID-2022-0638 NULL DACL

Posted by deepcore on September 8, 2022 – 2:06 am

Trojan.Win32.Autoit.fhj malware creates two processes “xservice.exe” and a child process “xps.exe”. The process creates an IPC pipe with a NULL DACL allowing RW for the Everyone user group.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »