linux-malware icon indicating copy to clipboard operation
linux-malware copied to clipboard
verified publisher icon timb-machine

[Intel]: https://github.com/Neo23x0/signature-base/blob/master/yara/mal_lnx_implant_may22.yar

Open timb-machine opened this issue 3 years ago • 0 comments

Area

Other rules

Parent threat

No response

Finding

https://github.com/Neo23x0/signature-base/blob/master/yara/mal_lnx_implant_may22.yar

Industry reference

attack:T1205.002:Socket Filters

Malware reference

BPFDoor Tricephalic Hellkeeper Unix.Backdoor.RedMenshen JustForFun https://github.com/timb-machine/linux-malware/issues/418

Actor reference

DecisiveArchitect

Component

Linux

Scenario

No response

timb-machine avatar May 06 '22 21:05 timb-machine