cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Do McAfee have detections for the below mentioned hashes

SHA-1 :                        

  • 038f75dcf1e5277565c68d57fa1f4f7b3005f3f3                           
  • 247b542af23ad9c63697428c7b77348681aadc9a
  • 0423672fe9201c325e33f296595fb70dcd81bcd9  
  • b4ec4837d07ff64e34947296e73732171d1c1586
  • 9dc173d4d4f74765b5fc1e1c9a2d188d5387beea

Reference :    https://www.welivesecurity.com/2018/09/05/powerpool-malware-exploits-zero-day-vulnerability/

2 Replies
McAfee Employee dvarnell
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Tested at a "Medium" GTI sensitivity, all of these hashes triggered detections.
marceh
Level 7
Report Inappropriate Content
Message 3 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Someone has the hash md5, since the ES only supports these hashes, or other ways to prevent them from taking advantage of this.

________________________________________________________

I do not speak English very well, I used a translator

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community