OSX/Rootkit.Weapox [Threat Name] go to Threat
OSX/Rootkit.Weapox.A [Threat Variant Name]
Category | trojan |
Size | 27608 B |
Aliases | OSX.Weapox (Symantec) |
OSX/Weapox (McAfee) | |
Rootkit.Mac.Weapox.a (F-Secure) |
Short description
OSX/Rootkit.Weapox.A is a trojan that can interfere with the operation of certain applications. It uses techniques common for rootkits. The OSX/Rootkit.Weapox.A is probably a part of other malware.
Installation
The trojan must be manually installed.
Other information
The trojan hooks the following Mac OS X APIs:
- setuid
- kill
- chmod
- write
It can execute the following operations:
- hide network communication on a certain port
- mask the logged in user
- change the privileges of a running process