Jump to content

Exploits Blocked: PayloadFileBlock and PayloadProcessBlock


Go to solution Solved by Porthos,

Recommended Posts

Hello,

We are running Malwarebytes for Teams (v. 4.6.2.281 - just updated today, update package v. 1.0.75463). I just got a series of Exploit.PayloadFileBlock and Exploit.PayloadProcessBlock notices from Malwarebytes. There were four total PayloadFileBocks affecting "cmd.exe": 2 of which were quarantined and 2 were blocked. There were two PayloadProcessBlocks affecing "v MachineGuid": both blocked. It doesn't appear that anything actually got quanantined though as the only thing in there was an old exploit attempt from a year or two ago. So I'm baffled by this as I've not seen it before and Malwarebytes itself doesn't appear to have found any "threats" via scans/quarantines.

I did run a full scan and last file attached is the scan report - no threats detected.

Please let me know if I need to take any additional steps.

Exploit-PayloadFileBlock_CMD-1.txt Exploit-PayloadFileBlock_CMD-2.txt Exploit-PayloadFileBlock_CMD-3.txt Exploit-PayloadFileBlock_CMD-4.txt Exploit-PayloadProcessBlock_v MachineGuid-1.txt Exploit-PayloadProcessBlock_v MachineGuid-2.txt 2023-9-19_Scan Results.txt

Link to post
Share on other sites

  • Solution
32 minutes ago, mgmccoy said:

So I'm baffled by this as I've not seen it before and Malwarebytes itself doesn't appear to have found any "threats" via scans/quarantines.

Exploit blocks are not something that gets "quarantined" they are just flat blocked.

This is also part of a false positive that a fix will be released in the next 2-3 weeks.

  • Like 1
Link to post
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.