McAfee Total Protection (MTP) < 16.0.R26 EoP (CVE-2020-7283)
Tags
| attack-pattern: | Exploits - T1587.004 Exploits - T1588.005 Impersonation - T1656 Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | e7f4c918-9830-4a68-b5a2-aec84290e3bd |
| Fingerprint | f001999a85ae8389 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | July 14, 2020, 5:37 a.m. |
| Added to db | Jan. 18, 2023, 9:56 p.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | McAfee Total Protection (MTP) < 16.0.R26 Escalation of Privilege (CVE-2020-7283) |
| Title | McAfee Total Protection (MTP) < 16.0.R26 EoP (CVE-2020-7283) |
| Detected Hints/Tags/Attributes | 28/1/17 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 1 | cve-2020-7283 |
|
| Details | Domain | 4128 | github.com |
|
| Details | Domain | 2 | redyops.com |
|
| Details | Domain | 2 | angelcyber.gr |
|
| Details | Domain | 2 | deceivewithillicium.com |
|
| Details | Domain | 2 | neurosoft.gr |
|
| Details | File | 1 | c:\programdata\microsoft\windows\start menu\programs\startup\backdoor.bat |
|
| Details | File | 2 | mmsshost.exe |
|
| Details | File | 1 | c:\programdata\mcafee\msk\settingsdb.dat |
|
| Details | File | 380 | notepad.exe |
|
| Details | Github username | 2 | redyopsresearchlabs |
|
| Details | Url | 1 | https://github.com/redyopsresearchlabs/cve-2020-7283-mcafee-total-protection-mtp-16.0.r26 |
|
| Details | Url | 1 | https://github.com/redyopsresearchlabs/sep-14.2 |
|
| Details | Url | 2 | https://redyops.com |
|
| Details | Url | 2 | https://angelcyber.gr |
|
| Details | Url | 2 | https://deceivewithillicium.com |
|
| Details | Url | 2 | https://neurosoft.gr/contact |