Open timb-machine opened 1 year ago
Malware reports
Defense Evasion
https://www.trendmicro.com/en_us/research/23/g/detecting-bpfdoor-backdoor-variants-abusing-bpf-filters.html
attack:T1205.002:Socket Filters attack:T1205:Traffic Signaling uses:BPF
BPFDoor /malware/binaries/BPFDoor Unix.Backdoor.RedMenshen
DecisiveArchitect
Linux Solaris
No response
Area
Malware reports
Parent threat
Defense Evasion
Finding
https://www.trendmicro.com/en_us/research/23/g/detecting-bpfdoor-backdoor-variants-abusing-bpf-filters.html
Industry reference
attack:T1205.002:Socket Filters attack:T1205:Traffic Signaling uses:BPF
Malware reference
BPFDoor /malware/binaries/BPFDoor Unix.Backdoor.RedMenshen
Actor reference
DecisiveArchitect
Component
Linux Solaris
Scenario
No response