Home

ovas0n backdoor

Ma, 02/10/2007 - 12:10 — OeX
descripcion: 

This backdoor was found in some infeted machines. Its a very simple one, and is very easy to detect. It Opens a password protected backdoor and lets you execute commands (using a shell, /bin/sh). When the backdoor starts, it hides itself in the background as a bash shell (-bash 0n).
The default password is "app910h" and the welcome msg (in the backdoor) is "unlg's backd00r, enter whatever is necessary".

link: 
http://www.ossec.net/rootkits/ovason.php
AdjuntoTamaño
ovas0n.c4.06 KB
  • 200 lecturas

Comentarios

Enviar un comentario nuevo

  • Saltos automáticos de líneas y de párrafos.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <p> <br>
  • You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.

Más información sobre opciones de formato

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Copy the characters (respecting upper/lower case) from the image.