TROJ_PYSHELL.A


 PLATFORM:

Linux, Unix

 OVERALL RISK RATING:
 REPORTED INFECTION:

  • Threat Type: Backdoor

  • Destructiveness: No

  • Encrypted: No

  • In the wild: Yes

  OVERVIEW

This backdoor connects to a website to send and receive information.

  TECHNICAL DETAILS

File Size:

975 bytes

File Type:

PY

Initial Samples Received Date:

01 Oct 2014

Arrival Details

This malware arrives via the following means:

    Backdoor Routine

    This backdoor connects to the following websites to send and receive information:

    • stats.google-traffic-analytics.com:9091

    NOTES:
    Once connected, it may execute any received data from the server

      SOLUTION

    Minimum Scan Engine:

    9.700

    FIRST VSAPI PATTERN FILE:

    11.184.06

    FIRST VSAPI PATTERN DATE:

    01 Oct 2014

    Scan your computer with your Trend Micro product to delete files detected as TROJ_PYSHELL.A. If the detected files have already been cleaned, deleted, or quarantined by your Trend Micro product, no further step is required. You may opt to simply delete the quarantined files. Please check this Knowledge Base page for more information.


    Did this description help? Tell us how we did.