What is said to be the first trojan targeting the Python programming language has been discovered.
The Trojan, Python.Pytroj, infected .pyc Python files with arbitrary code and was discovered in a proof of concept form by Symantec researchers.
It was not considered a "serious risk", researcher Stephen Doherty said.
The virus when executed scans and infects any .pyc Python files it found. and displays the message "you have been exploited".
The malware worked by interleaving viral code into binary code, deserialised and disassembled by the marshal module of Python.
|
|
The module then reassembled and serialised the infected code.
"The malicious code in the binary is not simply added or inserted, but interleaved into the existing binary," Doherty said.
He said the Python attack vector could become a threat if it was used with dangerous payloads.
Symantec has a detailed analysis on its blog.
The module then reassembled and serialised the infected code.
"The malicious code in the binary is not simply added or inserted, but interleaved into the existing binary," Doherty said.
_(37).jpg&h=140&w=231&c=1&s=0)
Cyber Resilience Summit
iTnews Executive Retreat - Security Leaders Edition
Huntress + Eftsure Virtual Event -Fighting A New Frontier of Cyber-Fraud: How Leaders Can Work Together
iTnews Cloud Covered Breakfast Summit
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
.jpg&h=271&w=480&c=1&s=1)
_(1).jpg&h=140&w=231&c=1&s=0)
