ELF_X21
Risk rating: low
Virus type: Elf Executable
Destructive: N

Aliases:
X21

Description:
This virus infects Unix files by overwriting them with its code and renaming the original host file (the uninfected file) with an extension of .X21.
In the wild: No
Trigger condition 1: Upon execution
Payload 1: Others (adds extension to infected files)
Detected by pattern file#: 813
Detected by scan engine#: 5.170
Language:
English
Platform: Linux
Encrypted: No
Size of virus: 16,380 Bytes

Details:
Upon execution, this virus searches the current directory for Unix files. Then it checks if a file has an extension .X21 and if it is executable in the user group. If the file does not have the .X21 extension, the virus adds it to the file. This file then serves as a copy of the original host file.

After this the virus copies its code to the original host file and changes the attributes of the file to read, write and be executable for the host group, the group where the user belongs and for all other groups as well.


------------------
Thank you for using Help From Techs Support Forums!
Please come again and remember to refer a friend to our site.