Shielding Networks From Androxgh0st
Description :
AndroxGh0st is a Python-based malware targeting Laravel applications by scanning and extracting sensitive data from .env files. It exploits vulnerabilities like CVE-2017-9841, CVE-2018-15133, and CVE-2021-41773 to compromise systems. Mitigation measures include patching, network security, credential protection, and behavioral analysis.
Published | Created | Modified |
---|---|---|
2024-03-22 11:13:05 | 2024-03-22 11:13:05 | 2024-03-22 11:41:50 |
Tags
Indicators
Malwares :- Androxgh0st
- f6f240dc2d32bfd83b49025382dc0a1cf86dba587018de4cd96df16197f05d88
- 3b04f3ae4796d77e5a458fe702612228b773bbdefbb64f20d52c574790b5c81a
- ca45a14d0e88e4aa408a6ac2ee3012bf9994b16b74e3c66b588c7eabaaec4d72
- 0df17ad20bf796ed549c240856ac2bf9ceb19f21a8cae2dbd7d99369ecd317ef
- bb7070cbede294963328119d1145546c2e26709c5cea1d876d234b991682c0b7
- 23fc51fde90d98daee27499a7ff94065f7ed4ac09c22867ebd9199e025dee066
- 6b5846f32d8009e6b54743d6f817f0c3519be6f370a0917bf455d3d114820bbc
External References
- https://otx.alienvault.com/pulse/65fd67c1034056b1ed61e636
- https://blogs.juniper.net/en-us/security/shielding-networks-against-androxgh0st
You can download the txt file containing the indicators by clicking on the button below: