Tim Brown

### Area Malware reports ### Parent threat _No response_ ### Finding https://old.reddit.com/r/LinuxMalware/comments/7qd27e/linuxss_aka_shark_hacktool_syn_scanner_wpcap/ ### Industry reference SS Shark (by malwaremustdie.org) ### Malware reference _No response_ ### Actor reference _No response_ ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://imgur.com/a/8mFGk ### Industry reference httpsd (by malwaremustdie.org) ### Malware reference _No response_ ### Actor reference _No response_ ### Component...

### Area Malware reports ### Parent threat _No response_ ### Finding https://twitter.com/billyleonard/status/1417910729005490177 ### Industry reference https://github.com/timb-machine/linux-malware/issues/329 ### Malware reference https://github.com/timb-machine/linux-malware/issues/131 ### Actor reference Zirconium APT31 ### Component _No response_ ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://www.welivesecurity.com/2015/04/29/unboxing-linuxmumblehard-muttering-spam-servers/ ### Industry reference Mumblehard ### Malware reference _No response_ ### Actor reference _No response_ ### Component _No response_...

[Intel]: https://media.defense.gov/2020/Aug/13/2002476465/-1/-1/0/CSA_DROVORUB_RUSSIAN_GRU_MALWARE_AUG_2020.PDF

1

### Area Malware reports ### Parent threat _No response_ ### Finding https://media.defense.gov/2020/Aug/13/2002476465/-1/-1/0/CSA_DROVORUB_RUSSIAN_GRU_MALWARE_AUG_2020.PDF ### Industry reference Drovorub ### Malware reference _No response_ ### Actor reference _No response_ ### Component _No response_...

### Area Malware reports ### Parent threat _No response_ ### Finding https://twitter.com/timb_machine/status/1450595881732947968 ### Industry reference _No response_ ### Malware reference https://github.com/timb-machine/linux-malware/issues/134 ### Actor reference LightBasin UNC1945 ### Component Solaris ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://yoroi.company/research/shadows-from-the-past-threaten-italian-enterprises/ ### Industry reference Qemu ### Malware reference https://github.com/timb-machine/linux-malware/issues/134 ### Actor reference LightBasin UNC1945 ### Component _No response_ ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://www.welivesecurity.com/wp-content/uploads/2021/10/eset_fontonlake.pdf ### Industry reference _No response_ ### Malware reference FontOnLake ### Actor reference _No response_ ### Component Linux ###...

### Area Malware reports ### Parent threat _No response_ ### Finding https://cloud.google.com/blog/topics/threat-intelligence/live-off-the-land-an-overview-of-unc1945/ ### Industry reference _No response_ ### Malware reference https://github.com/timb-machine/linux-malware/issues/134 SLAPSTICK ### Actor reference LightBasin UNC1945 ### Component Solaris...

### Area Malware reports ### Parent threat _No response_ ### Finding https://themittenmac.com/tinyshell-under-the-microscope/ ### Industry reference _No response_ ### Malware reference TSH TINYSHELL https://github.com/timb-machine/linux-malware/issues/481 ### Actor reference _No response_ ### Component...