A Linux backdoor that was apparently ported to Windows. This entry represents the Linux version. This version appears to have been written first and the Windows version was ported later, without full functionality. The Linux version offers persistence as well as some process manipulation techniques, though both versions apparently offer the ability to access the command line and execute programs as well as self-update.
|2023-04-05 ⋅ Medium Ilandu ⋅ |
PortDoor - APT Backdoor analysis
ACBackdoor 8.t Dropper PortDoor
|2022-02-09 ⋅ vmware ⋅ |
Exposing Malware in Linux-Based Multi-Cloud Environments
ACBackdoor BlackMatter DarkSide Erebus HelloKitty Kinsing PLEAD QNAPCrypt RansomEXX REvil Sysrv-hello TeamTNT Vermilion Strike Cobalt Strike
|2019-11-18 ⋅ Bleeping Computer ⋅ |
Linux, Windows Users Targeted With New ACBackdoor Malware
There is no Yara-Signature yet.