Linux malware: HackingTeam indicator of compromise

The HackingTeam leaks have allowed researchers to identify malicious HackingTeam strings which  have been provided below.

If you are able to find the string on your Linux device, then the chance is 99.9% that you have been infected by the HackingTeam malware.

Check for the following strings on your Linux device:

  • /var/crash/.reports-%u-%s
  • /var/tmp/.reports-%u-%s