You are Here:
Linux Lite 4.2 Final has been released. See the Release Announcements Section.



[ SECURITY ] Possible trojan in updating in VirtualBox

Author (Read 1024 times)

0 Members and 1 Guest are viewing this topic.

Possible trojan in updating in VirtualBox
« on: July 16, 2018, 10:21:03 AM »
 

hkn

  • New to Forums
  • *
  • 2
    Posts
  • Country: se
  • Reputation: 0
  • Linux Lite Member

  • Linux Lite: 4.0 64bit

  • CPU: Intel(R) Core(TM) i3-7100 U CPU@2.40 Ghz

  • MEMORY: 1Gb

  • VIDEO CARD: llvmpipe (LLVM 6.0, 256 bits)
I have VirtualBox and did updates yesterday and my Avast anti-virus detected a possible trojan (ELF:Agent-RA) in the Adobe Flash Player-plugin update and stopped the updates. Just want to check if this is a known detection and if not this might be something to be careful about installing.
 


Re: Possible trojan in updating in VirtualBox
« Reply #1 on: July 16, 2018, 11:09:56 AM »
 

trinidad

  • Gold Level Poster
  • *******
  • 860
    Posts
  • Country: us
  • Reputation: 158
  • Linux Lite Member
    • dbts-analytics.com

  • Linux Lite: 4.2 64bit

  • CPU: AMD A8 5500 4 cores

  • MEMORY: 8Gb

  • VIDEO CARD: AMD/ATI Radeon HD 7560D
Could be taken as Mirai by your AV scanner. See below.

http://blog.malwaremustdie.org/2016/08/mmd-0056-2016-linuxmirai-just.html

Are you playing any games that are asking for flash player updates in order to play?

TC

"You can't depend on your eyes when your imagination is out of focus."
 

Re: Possible trojan in updating in VirtualBox
« Reply #2 on: July 16, 2018, 05:00:47 PM »
 

hkn

  • New to Forums
  • *
  • 2
    Posts
  • Country: se
  • Reputation: 0
  • Linux Lite Member

  • Linux Lite: 4.0 64bit

  • CPU: Intel(R) Core(TM) i3-7100 U CPU@2.40 Ghz

  • MEMORY: 1Gb

  • VIDEO CARD: llvmpipe (LLVM 6.0, 256 bits)
No, I dont play any games; the AV just picked it up when Lite was updating and the  AV blocked the FlashPlayer plugin update. I think the rest of the updates was correct.
 


Tags:
 


Linux Lite 4.2 Final has been released. See the Release Announcements Section.