cancel
Showing results for 
Search instead for 
Did you mean: 

Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Do McAfee have detections for the below mentioned hashes

SHA-1 :                        

  • 038f75dcf1e5277565c68d57fa1f4f7b3005f3f3                           
  • 247b542af23ad9c63697428c7b77348681aadc9a
  • 0423672fe9201c325e33f296595fb70dcd81bcd9  
  • b4ec4837d07ff64e34947296e73732171d1c1586
  • 9dc173d4d4f74765b5fc1e1c9a2d188d5387beea

Reference :    https://www.welivesecurity.com/2018/09/05/powerpool-malware-exploits-zero-day-vulnerability/

2 Replies
McAfee Employee dvarnell
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Tested at a "Medium" GTI sensitivity, all of these hashes triggered detections.
marceh
Level 7
Report Inappropriate Content
Message 3 of 3

Re: Threat Advisory: PowerPool Malware Exploits ALPC LPE Zero-day Vulnerability

Someone has the hash md5, since the ES only supports these hashes, or other ways to prevent them from taking advantage of this.

________________________________________________________

I do not speak English very well, I used a translator

Member Rewards
McAfee Community rewards active and helpful members just like you. Click here to take a look at the first community members who received a special reward and were recognized by McAfee leader, Aneel Jaeel, for their participation and trusted knowledge in the community.