Skip to content

Hide Navigation Hide TOC

VIRTUALPITA (LINUX) (f30de842-03bc-4ddf-93d6-3638c477c7dd)

VIRTUALPITA (LINUX) is a backdoor which listens on TCP port 7475 and is persistent as an init.d startup service on Linux vCenter systems. The malware is capable of arbitrary command execution, file transfer capabilities and the ability to start/stop vmsyslogd.[Google Cloud September 29 2022]

Cluster A Galaxy A Cluster B Galaxy B Level
VIRTUALPITA (LINUX) (f30de842-03bc-4ddf-93d6-3638c477c7dd) Tidal Software UNC3886 (23af694a-11f4-43eb-a176-683059b301cb) Tidal Groups 1