Bird_banner_small4
Backdoor.Linux.Xaynnalc.A
TSL ID TSL20170613-04
Severity High
Description

Backdoor.Linux.Xaynnalc.A is a Backdoor Bot agent that targets the Linux platform. This malware contacts its control server, validates the server response, and identifies itself with system information. The malware takes commands that would allow to execute arbitrary shell commands on the infected system and conduct DDoS attacks.

Affected Products
  • Linux Kernel Project Linux Kernel All Versions
File Hashes
MD5:
  • 3A14D7F7D85BC433FC7BFF3482FCD995
SHA1:
  • 780304F61E00E08D102A77BEA2FC0404ABAC5E0E
Identifiers
Kaspersky
  • HEUR:TROJAN-DDOS.LINUX.XAYNNALC.A
Symantec
  • TROJAN.GEN.NPE
TrendMicro
AegisLab
  • TROJ.DDOS.LINUX!C
Avast
  • ELF:DDOS-AE
AVG
  • LINUX/DDOS
Avira
  • LINUX/AGENT.HESEH
ClamAV
  • UNIX.MALWARE.AGENT-6307577-0
Cyren
  • ELF/TROJAN.MCNF-5
DrWeb
  • LINUX.DDOS.117
ESET-NOD32
  • LINUX/IRCBOT.AF
Jiangmin
  • TROJANDDOS.LINUX.IR
NANO-Antivirus
  • TROJAN.UNIX.XAYNNALC.EOZZXV
Qihoo-360
  • WIN32/VIRUS.649
Tencent
  • LINUX.TROJAN-DDOS.XAYNNALC.LJAI
Related Threats