Open timb-machine opened 2 years ago
Defensive tools
Persistence, Defense Evasion, Command and Control
https://twitter.com/ldsopreload/status/1583178316286029824
https://github.com/timb-machine/linux-malware/issues/569 attack:T1205.002:Socket Filters attack:T1036:Masquerading attack:T1070:Indicator Removal on Host attack:T1205:Traffic Signaling
https://github.com/timb-machine/linux-malware/issues/420 https://github.com/timb-machine/linux-malware/issues/418 BPFDoor Tricephalic Hellkeeper Unix.Backdoor.RedMenshen JustForFun
DecisiveArchitect
Linux
No response
Area
Defensive tools
Parent threat
Persistence, Defense Evasion, Command and Control
Finding
https://twitter.com/ldsopreload/status/1583178316286029824
Industry reference
https://github.com/timb-machine/linux-malware/issues/569 attack:T1205.002:Socket Filters attack:T1036:Masquerading attack:T1070:Indicator Removal on Host attack:T1205:Traffic Signaling
Malware reference
https://github.com/timb-machine/linux-malware/issues/420 https://github.com/timb-machine/linux-malware/issues/418 BPFDoor Tricephalic Hellkeeper Unix.Backdoor.RedMenshen JustForFun
Actor reference
DecisiveArchitect
Component
Linux
Scenario
No response