Home / malwarePDF  

Linux.Powbot


First posted on 30 September 2014.
Source: Symantec

Aliases :

There are no other names known for Linux.Powbot.

Explanation :

The Trojan may be installed by an attacker that has already gained the ability to execute arbitrary commands on the compromised computer.

Once executed, the Trojan connects to the following command-and-control (C&C) server:
89.238.150.154
The Trojan then opens a back door on the compromised computer, allowing an attacker to perform the following actions:
Launch denial-of-service attacksDownload and execute files

Last update 30 September 2014

 

TOP