all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

suspicious traffic tied to know abusive Ip but process has valid Microsoft signature

Add to bookmarks
Jan. 29, 2023, 4:39 a.m. | /u/Individual-Path-1029

Malware Analysis & Reports www.reddit.com

I recently decided to do a Wireshark scan after being in a game that had a known remote code execution vuln and had a person already exploiting (using mod menu). I ran an antivirus scan and nothing was flagged. However, when I started a network scan using Wireshark, I saw loads of TCP traffic coming from an Ip. I looked it up and found it on abuseipdb. This prompted me to factory reset my device to see if that would …

abuseipdb antivirus code code execution coming exploiting game malware microsoft mod network process remote code remote code execution scan signature tcp traffic valid vuln wireshark

Visit resource

More from www.reddit.com / Malware Analysis & Reports

Are hidden incoming SMS common for C&C? 1 day, 6 hours ago | www.reddit.com
account android android malware carrier +12
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters 1 day, 10 hours ago | www.reddit.com
attackers clusters critical exploiting +5
A Powerful tracing engine based on Qemu 5 days, 16 hours ago | www.reddit.com
binary called can case +20
[Fixed] Coding The Rat King: A Multi-Family Malware Configuration Parser 1 week ago | www.reddit.com
code coding configuration family +5
Dynamic Malware Analysis of Konni RAT Malware APT37 With Any.Run 1 week, 5 days ago | www.reddit.com
advanced amp analysis any.run +22
All Youtube videos contain miniature windows of disruptive content 2 weeks, 1 day ago | www.reddit.com
goes interest malware play +7
Malware: Research shows that SpyLoan Apps have entered Tanzania and is exploiting Tanzanian Citizens. 2 weeks, 1 day ago | www.reddit.com
apps blackmail china cloud +15
⚠️ #Konni #APT LNK trickery: hiding multiple files in oversized LNK files 2 weeks, 1 day ago | www.reddit.com
apt files konni lnk +2
Advanced Topics For Malware Analysis and RE 2 weeks, 3 days ago | www.reddit.com
advanced analysis asm basics +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cybersecurity Consultant- Governance, Risk, and Compliance team

@ EY | Tel Aviv, IL, 6706703
View on infosec-jobs.com

Professional Services Consultant

@ Zscaler | Escazú, Costa Rica
View on infosec-jobs.com

IT Security Analyst

@ Briggs & Stratton | Wauwatosa, WI, US, 53222
View on infosec-jobs.com

Cloud DevSecOps Engineer - Team Lead

@ Motorola Solutions | Krakow, Poland
View on infosec-jobs.com
View more jobs