AndroxGh0st.Malware

description-logoDescription

This indicates an attempt to use AndroxGh0st.
AndroxGh0st is a malicious Python malware targeting primarily Laravel .env files.

description-logoOutbreak Alert

FortiGuard Labs continue to observe widespread activity of Androxgh0st Malware in the wild exploiting multiple vulnerabilities, specifically targeting- the PHPUnit (CVE-2017-9841), Laravel Framework (CVE-2018-15133) and Apache Web Server (CVE-2021-41773) to spread and conduct information gathering attacks on the target networks

View the full Outbreak Alert Report

affected-products-logoAffected Products

Any vulnerable Laravel servers.

Impact logoImpact

System Compromise: Remote attacker can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Monitor the traffic for any suspicious activity.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-02-02 22.488 Default_action:pass:drop
2023-01-26 22.484