InShortViral: The malware was linked to some Chinese hackers DDoS services given. Malware like PCs pointed at both Linux and Windows were connected to a toolkit as DDoS attacks.
Windows and Linux malware linked to Chinese DDoS tool. The malware was linked to some Chinese hackers DDoS services given. Malware like PCs pointed at both Linux and Windows were connected to a toolkit as DDoS attacks, which continued then exchanged by Chinese hackers ddos.tf within the web, according to the statement of the boys Malware Must Die! The malware, which was codenamed Linux/DDOSTF (or Linux/MrBlack) mainly attacked computers with Linux servers Elasticsearch executed, but also attacked and infect Windows systems, particularly the oldest, Windows XP, and Windows 2003 servers.
The reports of the guys Malware Must Die! They report that the Windows computer infections occurred through a PHP-Shell MySQL who took advantage of a mistake on the architecture of WMI (Windows Management Instrumentation), allowing them to infiltrate systems, install and run the malicious program and gaining administrator privileges on infected computers. The Windows version of this malware known as Trojan Mr Black.
Windows And Linux Malware Linked to Chinese DDoS Tool
Security researchers also claim that the variant of Linux for this malware, distributed as a malicious executable ELF, has much resemblance to an older malware, called JrLinux, so possibly they are of the same family. Additionally, part of the code could have been stolen from another famous malware Linux, Linux/Windows. Both the malware were linked to the service ddos.tf.
Also Read: How to Make Linux Bootable Pendrive
Analyzing telemetry data from infected PCs, researchers say these malware’s are just one part of a larger botnet, which is mainly used for DDoS attacks. Using the clues that have left the malware authors in the source code, the researchers have managed to reach from infected PCs to service ddos.tf. This website offers the “Wrath DDoS Cluster “or “DDoS Curse Cluster” in exchange for money.
Chinese website advertises it as a pen-testing tool, but it’s really nothing more than a control panel for DDoS attacks. Further investigating the source code for Linux/DDOSTF, researchers Malware Must Die! They managed to link several characteristics of malware with options and buttons on the control panel of DDoS attacks on the website.
“This control panel is loaded with not only malware but also with weapons Webshell and hacking tools. The ELF and malware Windows that have used lead us to them, “the researchers conclude. “These attackers are infecting and performing DDoS attacks? Or it is perhaps one of his buyers about? We do not know yet.”