1. /
  2. Security Response/
  3. Linux.Apaback

Linux.Apaback

Risk Level 1: Very Low

Discovered:
June 26, 2013
Updated:
June 27, 2013 10:47:34 AM
Infection Length:
15,472 bytes
Systems Affected:
Linux
When the Trojan is executed, it attempts to replace a filter module for the Apache HTTP Server version 2.2 on Linux with its own code.

Once the threat is loaded, it performs the following actions:
  • Monitors HTTP requests from remote computers
  • Modifies outgoing traffic from compromised the HTTP server to remote computers
  • Checks for specific search engines to make sure that the malicious component of the Web page is not sent to them

The Trojan may also open a back door and allow a remote attacker to gain access to the compromised computer.
Writeup By: Dumitru Stama
Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver