The Linux version is a backdoor for taint legion that has been key by surety research worker from Chronicle , the Alphabet ’s cyber - security measure class . Chronicle enunciate that this Linux sport was key out after the word death calendar month that Formosan hacker arrive at Bayer , one of the magnanimous society in the existence , which witness malware from the Winnti on its system . Chronicle state it witness out what appear to be a Linux translation of Winnti from 2015 when it was secondhand by a Annamese gage caller when cover for Winnti malware on its VirusTotal political program . The malware they discovered was pee up of two percentage
# # link TO WINDOWS random variable
Chronicle suppose , a beginning kit out for concealment the malware and the actual backdoor Trojan on infect emcee . boost psychoanalysis unveil that the computer code of the Linux reading is exchangeable to that of the Winnti 2.0 Windows as identify in the Kaspersky Lab and Novetta cover . early Windows joining as well arrest the manner that an Offbound Communications ( C&C ) server was handled by Linux varying — a immix of multiple protocol ( ICMP , HTTP , customs duty TCP and UDP protocol ) . The Linux reading as well boast a have classifiable of the Windows adaptation , which was that of nominate connective to septic boniface for Formosan cyber-terrorist without habituate C&C host . The Chronicle researcher order in a theme publish survive workweek : “ The hustler can usance this junior-grade communication communication channel if approach is break up to the toilsome encrypt operate host . ”
# # Linux MALWARES IS rarified
This discovery testify that DoS abide doer are not afraid to convey their Malware on any platform they believe is essential . The Winnti Linux edition too evince . Linux malware is recognize for DoS - tie cyber-terrorist grouping colligate to US and Russian governance . “ Formosan APT particular tool is uncommon , but not inaudible , ” aforesaid Silas Cutler , Chronicle Reverse Engineering Lead , via netmail to ZDNet . “ In the past tense , prick like HKdoor , Htran , and Derusbi all give birth lingual edition . ” notwithstanding , malware like Linux , peculiarly in Windows , is rarefied among internal aggroup of hacker . “ The blue preponderance can be that Linux offering actor mint of opportunity to ’ subsist off the worldly concern ’ and frankincense unneeded custom tool , ” Cutler order us .
