linux-malware icon indicating copy to clipboard operation
linux-malware copied to clipboard
verified publisher icon timb-machine

[Intel]: https://github.com/R3tr074/brokepkg

Open timb-machine opened this issue 2 years ago • 0 comments

Area

Malware PoCs

Parent threat

Persistence, Privilege Escalation, Defense Evasion, Command and Control

Finding

https://github.com/R3tr074/brokepkg

Industry reference

uses:ProcessTreeSpoofing uses:AbnormalSignal uses:TamperCredStruct uses:PortHiding attack:T1547.006:Kernel Modules and Extensions attack:T1564.001:Hidden Files and Directories attack:T1573:Encrypted Channel attack:T1205:Traffic Signaling

Malware reference

BrokePkg

Actor reference

No response

Component

Linux

Scenario

No response

timb-machine avatar Jan 17 '24 23:01 timb-machine