Tim Brown

### Area Offensive techniques ### Parent threat Execution ### Finding https://twitter.com/brainsmoke/status/399558997994668033 ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://hybrid-analysis.com/sample/eb8826bac873442045a6a05f1fa25b410ca18db6942053f6d146467c00d5338d ### Industry reference _No response_ ### Malware reference Peer2Profit ### Actor reference _No response_ ### Component Linux ###...

### Area Breach reports ### Parent threat Initial Access ### Finding https://twitter.com/1ZRR4H/status/1560662815400407040 ### Industry reference _No response_ ### Malware reference Peer2Profit ### Actor reference _No response_ ### Component Linux ###...

### Area Malware reports ### Parent threat Impact ### Finding https://twitter.com/malwrhunterteam/status/1559636227485319168 ### Industry reference _No response_ ### Malware reference REvil wltm ### Actor reference _No response_ ### Component Linux ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://blog.polyswarm.io/lightning-framework ### Industry reference _No response_ ### Malware reference Lightning [/malware/binaries/Lightning](../tree/main/malware/binaries/Lightning) ### Actor reference _No response_ ### Component Linux...

### Area Malware reports ### Parent threat Impact ### Finding https://www.uptycs.com/blog/another-ransomware-for-linux-likely-in-development ### Industry reference _No response_ ### Malware reference DarkAngels wltm ### Actor reference _No response_ ### Component Linux ###...

### Area Offensive tools ### Parent threat Defense Evasion ### Finding https://github.com/elfmaster/maya ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux...

### Area Malware reports ### Parent threat _No response_ ### Finding https://blog.avast.com/2013/08/27/linux-trojan-hand-of-thief-ungloved/ ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component _No...

### Area Malware reports ### Parent threat Initial Access, Command and Control ### Finding https://www.trendmicro.com/en_us/research/22/h/irontiger-compromises-chat-app-Mimi-targets-windows-mac-linux-users.html ### Industry reference uses:MiMi uses:ElectronJS ### Malware reference rshell wltm ### Actor reference Iron Tiger...

### Area Defensive techniques ### Parent threat _No response_ ### Finding https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf ### Industry reference uses:eBPF ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux ###...