• Home
• Threat Encyclopaedia
• Glossary
• Statistics
• Update Info
• Tools
• Reports
• Threat Radar Report, February 2014

Short description

The trojan serves as a backdoor. It can be controlled remotely. The trojan can be used for sending spam.

Installation

The trojan is often included in the installation packages of programs downloaded from untrustworthy sources.

The trojan is included in the installation package of the DirectMailer application.

The trojan is usually found in the following folder:

The file name is randomly generated.

The trojan ensures it is run every 15 min. by adding an entry to the crontab configuration file.

Other information

The trojan serves as a backdoor. It can be controlled remotely.

The trojan acquires data and commands from a remote computer or the Internet.

The trojan contains a list of (10) URLs. The HTTP protocol is used in the communication.

It can execute the following operations:

For further information follow the links below:

* Unboxing Linux/Mumblehard – Muttering spam from your servers

1992 - 2023 ESET, spol. s r.o. - All rights reserved. Trademarks used therein are trademarks or registered trademarks of ESET, spol. s r.o. or ESET North America. All other names and brands are registered trademarks of their respective companies.