Open timb-machine opened 1 year ago
Malware reports
Resource Development, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Impact
https://www.fortinet.com/blog/threat-research/rocke-variant-ready-to-box-mining-challengers
attack:T1496:Resource Hijacking attack:T1608:Stage Capabilities attack:T1053.003:Cron attack:T1027.002:Software Packing attack:T1543.002:Systemd Service attack:T1037.004:RC Scripts attack:T1574.006:Dynamic Linker Hijacking attack:T1036.005:Match Legitimate Name or Location attack:T1190:Exploit Public-Facing Application attack:T1110:Brute Force uses:KillCompetition
XMRig
Rocke
Linux
No response
Area
Malware reports
Parent threat
Resource Development, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Impact
Finding
https://www.fortinet.com/blog/threat-research/rocke-variant-ready-to-box-mining-challengers
Industry reference
attack:T1496:Resource Hijacking attack:T1608:Stage Capabilities attack:T1053.003:Cron attack:T1027.002:Software Packing attack:T1543.002:Systemd Service attack:T1037.004:RC Scripts attack:T1574.006:Dynamic Linker Hijacking attack:T1036.005:Match Legitimate Name or Location attack:T1190:Exploit Public-Facing Application attack:T1110:Brute Force uses:KillCompetition
Malware reference
XMRig
Actor reference
Rocke
Component
Linux
Scenario
No response