Https://www.huntress.com/blog/slashandgrab-screen-connect-post-exploitation-in-the-wild-cve-2024-1709-cve-2024-1708

⚔️ 공격 정보
1

Yara Rule - ScreenConnect 취약성 CVE-2024-1708 및 CVE-2024-1709의 악용에 관한 HuntressLabs 보고서에서 언급 된 맬웨어 샘플을 감지 관련 IOC 14개 발견

Yara 정의.

Neo23x0
Yara Rule - Detects malware samples mentioned in a HuntressLabs report on the exploitation of ScreenConnect vulnerability CVE-2024-1708 and CVE-2024-1709

Yara definition.
https://github.com/Neo23x0/signature-base/commit/cce28f1b681b37420b950d8813b949c8e00baaf6