EXPL_Encoded_CVE_2022_30190_Payloads_Jun22_1

Rule Info

Author
Florian Roth
Minimum Yara
1.7
Name
EXPL_Encoded_CVE_2022_30190_Payloads_Jun22_1
Date
2022-06-07
Description
Detects encoded Follina payloads
Tags
['EXPLOIT', 'CVE_2022_30190']
Score
80
Av Ratio
21.91
Required Modules
[]
Rule Hash
ff2f0dd75ebe1aa7d1eed8eebed38722

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
2
Suspicious (< 10 engines)
3
Clean (0 engines)
0

Rule Matches

Hash
Positives
Total
Timestamp
VT
c4a8f69df5c9439163541a1ce81cff6d0b92b44f7862d027d2f10cda25089970
8
61
2022-10-20 12:17:01
a5521ab57d4b3048cb182236df1579380fc1ec87019eaf253568b26b43b19f2f
21
61
2022-10-16 23:45:19
d84e41cf19a1782f40b577b5e2b7c8775f1fdfd7b7218e647f92c20f3b664455
7
59
2022-09-06 00:16:24
3f0e30c617b1d916052161046429fd91de13171136c0c41ebbf4a8b8fb839186
6
59
2022-09-05 14:26:05
1023ee71d43591c1af768c52b50076f44ebd8cf8410a66cdfdbc7981566058c0
24
60
2022-09-05 12:24:30

Rule Matches per Month (last 24 months)