Dr.WEB, Russian developer of information security software, is warning users about a new malignant program for Linux which has been dubbed Linux.Hanthie. A thorough analysis showed that this Trojan (also known as the Hand of Thief) is equipped not only with a wide array malicious features but also can conceal itself from anti-viruses.
Currently, the malware is actively sold and purchased on underground hacker forums. It features anti-detection technologies and routines for its covert startup, does not require administrator privileges, and uses strong encryption (256-bit) for communicating with the control panel. The bot's configuration file contains a large number of parameters for its flexible configuration.
