Linux/Osf.8759
Analysis
- If a file infected by this virus is run, the virus
will seeks ELF binaries in the current folder and
attempt to infect them
- The virus will attach its code to the end of target
files
- Virus is a direct action infector and is memory
resident
- Virus will place a "marker" by inserting
bytes in unused areas at the top of infected binaries
as an indication the file has already been infected,
and will not infect the file more than once
Telemetry
Detection Availability
FortiClient | |
---|---|
Extreme | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |