[frame4-mdpro]

Looking for this new, multi-platform malware:

""Multi-platform Backdoor Lurks in Colombian Transport Site""
http://www.f-secure.com/weblog/archives/00002397.html

Hashes:
Trojan-Downloader:Java/GetShell.A (sha1: 4a52bb43ff4ae19816e1b97453835da3565387b7)
Backdoor:OSX/GetShell.A (sha1: b05b11bc8520e73a9d62a3dc1d5854d3b4a52cef)
Backdoor:Linux/GetShell.A (sha1: 359a996b841bc02d339279d29112fe980637bf88)
Backdoor:W32/GetShell.A (sha1: 26fcc7d3106ab231ba0ed2cba34b7611dcf5fc0a)

Thanks,

[Xylitol]

Looking for this new, multi-platform malware:

""Multi-platform Backdoor Lurks in Colombian Transport Site""
http://www.f-secure.com/weblog/archives/00002397.html

Hashes:
Trojan-Downloader:Java/GetShell.A (sha1: 4a52bb43ff4ae19816e1b97453835da3565387b7)

[Xylitol]

W32/GetShell.A

[leeno]

W32/GetShell.A

Hi Xylitol,

Did u uploaded the same compiled Java class
Trojan-Downloader:Java/GetShell.A (sha1: 4a52bb43ff4ae19816e1b97453835da3565387b7. I tried to run the applet with appletviewer.exe but don't see any cnc communication or dropped file .

Thanks

arvind Kumar