Bashware

Bashware is a form of malware that uses the Windows Subsystem for Linux (WSL). It is a feature introduced in Microsoft Windows 10. This feature was introduced in 2016 to support a Linux-based shell inside the Windows operating system.

WSL takes the commands provided by Bash, which is the Linux shell used for Windows. Each command is translated to the related Windows system calls. Any response or data is collected and returned the invoking shell command. Due to this internal communication interface, many security software solutions can't properly protect against attacks that happen in this specific area.