Detections
Analytics

ZXShell Malware Services Detection

critical Nessus Plugin ID 78430

Language:

Synopsis

ZXShell is a remote access trojan backdoor.

Description

ZXShell is a remote access trojan backdoor that can be used to persist on your network for malicious purposes.

Detections :

- ZXShell HTTP server
- ZXShell Command and Control server

Solution

Remove the infection.

See Also

http://www.nessus.org/u?12727114

Plugin Details

Severity: Critical

ID: 78430

File Name: zxshell_detect.nasl

Version: 1.8

Type: remote

Family: Backdoors

Published: 10/14/2014

Updated: 4/11/2022

Configuration: Enable thorough checks

Asset Inventory: true

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Vulnerability Publication Date: 2/23/2012