Sept. 19, 2023, 1 p.m. | Robert Falcone


A phony proof-of-concept (PoC) code for CVE-2023-40477 delivered a payload of VenomRAT. We detail our findings, including an analysis of the malicious code.

The post Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT appeared first on Unit 42.

advanced url filtering analysis code concept cve cve-2023-25157 cve-2023-40477 fake findings malicious payload poc proof proof-of-concept remote access trojan remote code execution social engineering unit 42 venomrat vulnerability wildfire winrar

More from / Unit42

Business Information Security Officer

@ Metrolink | Los Angeles, CA

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City

Security Engineer

@ ChartMogul | Remote, EU

Malware Reverse Engineer

@ Two Six Technologies | Fort Meade, Maryland

SOC Analyst Level 3

@ OpenBet | Bengaluru, India

Course Developer, Network Security

@ Palo Alto Networks | Plano, TX, United States