Page 1 of 1

Linux Shishiga malware using LUA scripts

Posted: 28 Apr 2017, 22:38
by Evan
https://www.welivesecurity.com/2017/04/ ... a-scripts/

https://www.theregister.co.uk/2017/04/25/linux_malware/
the usage of the BitTorrent protocol and Lua modules separates it from the herd, according to ESET.

Re: Linux Shishiga malware using LUA scripts

Posted: 05 May 2017, 22:51
by KnallKopf
Unfortunately I do not have the link any more,
but for years i read a description for Windows how to detect a trojan that are do not use the normal IP-Stack.
(It mean 'netstat -utapn' can not see them)
The procedure was as follows:
Dumping the RAM to an Image on Disk, and analyze them.
Know everbody a instructions for the same procedure on Linux ?

Re: Linux Shishiga malware using LUA scripts

Posted: 23 Jun 2017, 12:53
by anajames
i think i will try this procedure out over the weekend.