linux-malware issues

[Intel]: https://analyze.intezer.com/files/82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92

### Area Malware reports ### Parent threat _No response_ ### Finding https://analyze.intezer.com/files/82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92 ### Industry reference Log4J ### Malware reference [/malware/binaries/Unix.Trojan.Log4J/82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92.elf.x86](../blob/main/malware/binaries/Unix.Trojan.Log4J/82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92.elf.x86) ### Actor reference _No response_ ### Component Linux ### Scenario...

timb-machine

new

missing:tactics

missing:tag:T1048

missing:tag:T1071.001

missing:tag:T1491

missing:tag:T1567

missing:tag:T1573

[Intel]: https://www.intezer.com/blog/research/lightning-framework-new-linux-threat/

### Area Malware reports ### Parent threat _No response_ ### Finding https://www.intezer.com/blog/research/lightning-framework-new-linux-threat/ ### Industry reference _No response_ ### Malware reference Lightning [/malware/binaries/Lightning](../tree/main/malware/binaries/Lightning) ### Actor reference _No response_ ### Component Linux...

timb-machine

new

missing:tactics

missing:tag:T1005

missing:tag:T1048

missing:tag:T1057

missing:tag:T1070.004

missing:tag:T1071.001

missing:tag:T1491

missing:tag:T1546.004

missing:tag:T1567

missing:tag:T1573

missing:tag:T1590

missing:tag:T1021.002

missing:tag:T1053.003

missing:tag:T1098.004

missing:tag:T1574.006

missing:tag:T1007

missing:tag:T1053.006

missing:tag:T1543.002

missing:tag:T1037

missing:tag:T1552.004

missing:tag:T1037.004

[Intel]: https://www.fortinet.com/blog/threat-research/rapperbot-malware-discovery

### Area Malware reports ### Parent threat Initial Access Lateral Movement Impact ### Finding https://www.fortinet.com/blog/threat-research/rapperbot-malware-discovery ### Industry reference _No response_ ### Malware reference RapperBot [/malware/binaries/RapperBot](../tree/main/malware/binaries/RapperBot) ### Actor reference _No response_...

timb-machine

new

[Intel]: https://github.com/metac0rtex/SSH-Private-Key-Brute-Forcer

### Area Offensive tools ### Parent threat Initial Access, Lateral Movement ### Finding https://github.com/metac0rtex/SSH-Private-Key-Brute-Forcer ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ###...

timb-machine

confirmed

[Intel]: https://github.com/io-tl/Mara

### Area Offensive tools ### Parent threat _No response_ ### Finding https://github.com/io-tl/Mara ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux...

timb-machine

new

missing:tactics

missing:tag:T1005

missing:tag:T1048

missing:tag:T1057

missing:tag:T1070.004

missing:tag:T1071.001

missing:tag:T1546.004

missing:tag:T1567

missing:tag:T1573

missing:tag:T1021.002

missing:tag:Non-persistentStorage

missing:tag:T1548.003

missing:tag:T1021.004

missing:tag:T1027.004

[Intel]: https://github.com/timb-machine/obscure-forensics

### Area Defensive techniques ### Parent threat _No response_ ### Finding https://github.com/timb-machine/obscure-forensics ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component _No...

timb-machine

new

[Intel] https://github.com/rung/threat-matrix-cicd

### Area Defensive techniques ### Parent threat Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Lateral Movement, Exfiltration, Impact ### Finding https://github.com/rung/threat-matrix-cicd ### Industry reference _No response_ ###...

timb-machine

new

[Intel]: https://github.com/archcloudlabs/BSidesRoc2022_Linux_Malware_Analysis_Course

### Area Defensive techniques ### Parent threat _No response_ ### Finding https://github.com/archcloudlabs/BSidesRoc2022_Linux_Malware_Analysis_Course ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component _No...

timb-machine

new

[Intel] https://github.com/milabs/awesome-linux-rootkits

### Area Offensive techniques ### Parent threat Persistence ### Finding https://github.com/milabs/awesome-linux-rootkits ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux ###...

timb-machine

new

[Intel]: https://github.com/DavidBuchanan314/dlinject

### Area Offensive tools ### Parent threat _No response_ ### Finding https://github.com/DavidBuchanan314/dlinject ### Industry reference _No response_ ### Malware reference _No response_ ### Actor reference _No response_ ### Component Linux...

linux-malware
linux-malware copied to clipboard

Metadata

[Intel]: https://analyze.intezer.com/files/82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92

[Intel]: https://www.intezer.com/blog/research/lightning-framework-new-linux-threat/

[Intel]: https://www.fortinet.com/blog/threat-research/rapperbot-malware-discovery

[Intel]: https://github.com/metac0rtex/SSH-Private-Key-Brute-Forcer

[Intel]: https://github.com/io-tl/Mara

[Intel]: https://github.com/timb-machine/obscure-forensics

[Intel] https://github.com/rung/threat-matrix-cicd

[Intel]: https://github.com/archcloudlabs/BSidesRoc2022_Linux_Malware_Analysis_Course

[Intel] https://github.com/milabs/awesome-linux-rootkits

[Intel]: https://github.com/DavidBuchanan314/dlinject

← Metadata

Owner

Metadata

linux-malware linux-malware copied to clipboard

Metadata

← Metadata

Owner

Metadata

linux-malware
linux-malware copied to clipboard