Today > vulnerabilities   -   You can now download lists of IOCs here!

Tag: malicious scripts

2 attack reports | 0 vulnerabilities

Attack reports

LemonDuck Unleashes Cryptomining Attacks Through SMB Service Exploits

This report details the tactics and techniques employed by the LemonDuck cryptomining malware, which exploits the SMB service by leveraging the EternalBlue vulnerability (CVE-2017-0144). After gaining initial access through brute-force attacks, the malware creates malicious files, disables security…

persistence
malicious scripts
credential theft
cryptomining
CVE-2017-0144
lemonduck
2024-10-14
network manipulation
Published: October 14, 2024

Downloadable IOCs 8

FakeBat Malware Distributing via Fake Browser Updates

This report details a recent malware campaign leveraging fake browser update notifications to distribute the FakeBat loader. The campaign employs sophisticated social engineering techniques, with malicious JavaScript code injected into compromised websites to trigger deceptive update prompts. These…

phishing
social engineering
fakebat
browser exploits
malicious scripts
Published: April 29, 2024

Downloadable IOCs 6

» Click here to see all Attack Reports «