BackDoor.Wirenet.1 - the first cross-platform Trojan running on Linux and Mac OS X
The first detection of a new virus was announced by Dr.Web . Adding BackDoor.Wirenet.1 to the database was accompanied by news on the company's website, which is not surprising, because the event is to some extent significant.
The backdoor Trojan , capable of operating in Linux and MacOS X operating systems. It has keylogger functionality and is capable of stealing user passwords in Opera, Firefox, Chrome, Chromium, as well as passwords for applications such as Thunderbird, SeaMonkey, Pidgin.
At startup, it copies itself to the user's home directory.
On MacOS: to the% home% / WIFIADAPT.app.app folder
In Linux: in% home% / WIFIADAPT
Connects to a remote command center at 212.7.208.65.
Uses connection verification using the Advanced Encryption Standard (AES) encryption algorithm.
Added to Dr.Web virus database: 2012-08-21
Description added: 2012-08-22
Description of BackDoor.Wirenet.1 from Dr.Web virus database:
The backdoor Trojan , capable of operating in Linux and MacOS X operating systems. It has keylogger functionality and is capable of stealing user passwords in Opera, Firefox, Chrome, Chromium, as well as passwords for applications such as Thunderbird, SeaMonkey, Pidgin.
At startup, it copies itself to the user's home directory.
On MacOS: to the% home% / WIFIADAPT.app.app folder
In Linux: in% home% / WIFIADAPT
Connects to a remote command center at 212.7.208.65.
Uses connection verification using the Advanced Encryption Standard (AES) encryption algorithm.
Added to Dr.Web virus database: 2012-08-21
Description added: 2012-08-22
')
Source: https://habr.com/ru/post/150184/
All Articles