Rule Info
Name
MAL_WAR_Ivanti_EPMM_MobileIron_LogClear_JAVA_Aug23
Author
Florian Roth
Description
Detects LogClear.class found in the Ivanti EPMM / MobileIron Core compromises exploiting CVE-2023-35078
Score
80
Date
2023-08-01
Minimum Yara
1.7
Rule Hash
19269d0afcc4d43d4394866df914b0e5
Tags
['CVE_2023_35078', 'DEMO', 'MAL']
Required Modules
[]
Virustotal Matches
Antivirus Verdicts
Rating
Number of Samples
Malicious (>= 10 engines)
20
Suspicious (< 10 engines)
2
Clean (0 engines)
0
Rule Matches
Timestamp
Positives
Total
Hash
VT