Hackers abuse Avast anti-rootkit driver to disable defenses
Tags
country: Cuba
attack-pattern: Malware - T1587.001 Malware - T1588.001 Rootkit - T1014 Rootkit
Show in Graph
Common Information
Type Value
UUID a1bc32a2-bc66-4724-926e-ee43d1644a73
Fingerprint 9d95fb0d196ff204
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 23, 2024, midnight
Added to db Nov. 23, 2024, 10:20 p.m.
Last updated Dec. 12, 2024, 3:41 p.m.
Headline Hackers abuse Avast anti-rootkit driver to disable defenses
Title Hackers abuse Avast anti-rootkit driver to disable defenses
Detected Hints/Tags/Attributes 21/2/6
Source URLs
Redirection Url
Details Source https://www.bleepingcomputer.com/news/security/hackers-abuse-avast-anti-rootkit-driver-to-disable-defenses/
URL Provider
Details Provider Source level domain
Details bleepingcomputer.com www.bleepingcomputer.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 279 BleepingComputer https://www.bleepingcomputer.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 9 
cve-2022-26522
Details CVE 10 
cve-2022-26523
Details File 7 
kill-floor.exe
Details File 10 
ntfs.bin
Details File 21 
aswarpot.sys
Details File 129 
sc.exe