Home > Uncategorized > A trojan that executes itself according to your operating system

A trojan that executes itself according to your operating system

A cross-platform Trojan has been found by F-Secure, which looks for the operating system to decide which packet to download. The Trojan downloader looks for the operating system- Windows, Mac OS X, or Linux running on your computer and then downloads the corresponding malware for your platform.

The Trojan infection relies on a malicious Java applet to install backdoors on your computer. When you first visit a compromised site, you are prompted to install the Java applet, which hasn’t been signed with a certificate. In case you do so, the applet checks which operating system you have and then drops a corresponding Trojan for your platform.

F-Secure finds that his initial malware Trojan-Downloader:Java/GetShell.A is written using the Social-Engineer Toolkit (SET), an open-source and publicly-available Python tool designed for penetration testing. The payloads remain the same, with only their implementations changed.

Emil Protalinski writes at ZDNet.com that “it shouldn’t surprise you that Java is being used: the platform has loads of security holes, and it runs on all the major operating systems.”

Advertisements
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s