{"uuid": "b78542ee-08f8-458e-b71a-b1de604b7368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34048", "type": "exploited", "source": "https://t.me/vxunderground/4463", "content": "Large update to vx-underground:\n\nSamples:\n- VirusSign.2024.06.20\n- VirusSign.2024.06.21\n- VirusSign.2024.06.22\n- VirusSign.2024.06.23\n- VirusSign.2024.06.24\n- VirusSign.2024.06.25\n- VirusSign.2024.06.26\n- VirusSign.2024.06.27\n- VirusSign.2024.06.28\n- InTheWild.0127\n\nPapers:\n- 2015-01-22 - Malvertising Leading To Flash Zero Day Via Angler Exploit Kit\n- 2018-10-22 - Chalubo botnet wants to DDoS from your server or IoT device\n- 2022-07-18 - Trident Ursa\n- 2023-06-10 - IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment\n- 2023-06-13 - VMware ESXi Zero-Day Used by Chinese Espionage Actor to Perform Privileged Guest Operations on Compromised Hypervisors\n- 2024-01-06 - Understanding Internals of SmokeLoader\n- 2024-01-19 - Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021\n- 2024-04-09 - BlueShell: Four Years On, Still A Formidable Threat\n- 2024-04-09 - Unpacking the Blackjack Group's Fuxnet Malware\n- 2024-04-24 - Analysis of Ongoing FROZENSHADOW Attack Campaign Leveraging SSLoad Malware and RMM Software for Domain Takeover\n- 2024-05-06 - HijackLoader Updates\n- 2024-05-08 - From OSINT to Disk: Wave Stealer Analysis\n- 2024-05-13 - Wavestealer Spotted In The Wild\n- 2024-05-23 - Tracking APT SideWinder With DNS Records\n- 2024-05-26 - QakBOT v5 Deep Malware Analysis\n- 2024-05-28 - BlackSuit Attack Analysis\n- 2024-05-30 - The Pumpkin Eclipse\n- 2024-06-04 - Muhstik Malware Targets Message Queuing Services Applications\n- 2024-06-05 - DarkGate switches up its tactics with new payload, email templates\n- 2024-06-05 - ExMatter malware levels up: S-RM observes new variant with simultaneous remote code execution and data targeting\n- 2024-06-06 - DarkGate: Make AutoIt Great Again\n- 2024-06-06 - EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis", "creation_timestamp": "2024-06-29T17:10:08.000000Z"}