Linux Malware Evades Detection by Hiding Code in RAR Filenames, Delivers VShell Backdoor

Tuesday, 6 January

Saturday, 23 August, 2025

Linux Malware Evades Detection by Hiding Code in RAR Filenames, Delivers VShell Backdoor

A new Linux-specific attack sends phishing emails with RAR attachments containing maliciously crafted filenames that embed Base64-encoded Bash commands. When a shell script lists these filenames, the code executes—bypassing antivirus tools that don’t inspect filenames. The embedded payload then downloads an ELF binary tailored to the system’s architecture, installs the VShell backdoor, and connects to a C2 server for encrypted control. This stealthy method exploits shell parsing flaws.

Read full story at The Hacker News

Tags:malware Linux Phishing

Download the TechShots App

IT Trends Move Fast. Stay Faster.

Android iOS

Categories

Linux Malware Evades Detection by Hiding Code in RAR Filenames, Delivers VShell Backdoor

Also Read

Bengaluru Police Contact Techie Using AI Helmet to Track Traffic Violators

Healthcare, Skills, and Lifestyle Drive Indian Search Trends

New Artificial Intelligence Tool Detects Pancreatic Cancer with High Accuracy

India’s First AI Clinic Launches in Noida to Transform Healthcare Services

New AI Delivery App Scam Targets Users Through Viral Reddit Posts

NVIDIA Unveils G-Sync Pulsar and Ambient Adaptive Tech for Next-Gen Monitors

Wipro Updates Hybrid Policy: Mandates Six Hours of Office Presence per Day

Intel Launches Next-Gen AI PC Processors at CES to Regain Market Lead

TV Manufacturers Bet Big on AI to Combat Smartphone Dominance

Download the TechShots App

Subscribe To Our Newsletter.