Analysis of New GlobeImposter Ransomware Variant

Over the past few days, FortiGuard Labs captured a number of JS (JavaScript) scripts. Based on my analysis, they were being used to spread the new GlobeImposter ransomware variants.  I picked one of them and did a quick analysis. The version of the variant I reviewed is “726”. Figure 1 Continue Reading

How to enable mod_suexec with Apache

How to enable mod_suexec with Apache on CentOS WebPanelThis module allows CGI scripts to run as a specified user and group. Don’t enable this module if you don’t need it as it will add additional execution time for your scripts. This module is recommend for servers having enabled cgi-script and Continue Reading

How to run cgi scripts with Apache

How to run cgi scripts with ApacheIn this example we will add support for the following file extensions: .cgi .pl .pyWe have set folder to be /home/*/public_html/ but you can set it to be /home/*/public_html/cgi-bin/ if needed. Create File: /usr/local/apache/conf.d/mod_cgid.conf LoadModule cgid_module modules/mod_cgid.so Options ExecCGI SymLinksifOwnerMatch SetHandler cgi-script AddHandler cgi-script Continue Reading

Apache run python script

Install python and run python scripts with apache on your CentOS WebPanel server. Install python yum install python Check python version python -V Create a test script cd /home/USERNAME/public_html mkdir cgi-bin nano cgi-bin/test.py Now add the following python test script in the file:/home/USERNAME/public_html/cgi-bin/test.py #!/usr/bin/python # enable debugging import cgitb cgitb.enable() Continue Reading

>