Exploit for Hades RAT Web Panel Insecure Credential Storage Vulnerability

## https://sploitus.com/exploit?id=1337DAY-ID-37486
Original source: https://malvuln.com/advisory/c4cc1317aea42f7dd4a1b786c5278a24.txt
Contact: [email protected]
Media: twitter.com/malvuln

Threat: Hades RAT - Web Panel
Vulnerability: Insecure Credential Storage
Family: Hades
Type: WebUI
MD5: c4cc1317aea42f7dd4a1b786c5278a24
MD5: a117b7fa4691b766dd5aa6455438fded (strings.ini)
Vuln ID: MVID-2022-0512
Disclosure: 03/13/2022
Description: The Hades Rat malware web-panel listens on Port 80 and stores its weak password "megapass" in plaintext in the strings.ini file.

Exploit/PoC:
"strings.ini"

[identifiant]
mdp = "megapass"

[strings]
error_mdp = "Error Password False..."

form_mdp = "Please put your password."
form_valid = "Send !"

com_header = "Write your commands for your bot(s)"