cancel
Showing results for 
Search instead for 
Did you mean: 

Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Do McAfee have detections for the below mentioned hashes

SHA-1 :                        

  • 038f75dcf1e5277565c68d57fa1f4f7b3005f3f3                           
  • 247b542af23ad9c63697428c7b77348681aadc9a
  • 0423672fe9201c325e33f296595fb70dcd81bcd9  
  • b4ec4837d07ff64e34947296e73732171d1c1586
  • 9dc173d4d4f74765b5fc1e1c9a2d188d5387beea

Reference :    https://www.welivesecurity.com/2018/09/05/powerpool-malware-exploits-zero-day-vulnerability/

2 Replies
McAfee Employee dvarnell
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Tested at a "Medium" GTI sensitivity, all of these hashes triggered detections.
marceh
Level 7
Report Inappropriate Content
Message 3 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Someone has the hash md5, since the ES only supports these hashes, or other ways to prevent them from taking advantage of this.

________________________________________________________

I do not speak English very well, I used a translator

McAfee Support Mobile App Available
With the new McAfee Support Mobile App you’ll be able to update, close, and view service requests on your mobile device. The app will also notify you when one of our technical support engineers update a service request. Download the Android version from Google Play and the iOS version from the Apple App Store today!