Open timb-machine opened 6 months ago
Malware reports
Persistence, Privilege Escalation, Defense Evasion, Command and Control
https://www.group-ib.com/blog/krasue-rat/
uses:AbnormalSignal attack:T1071:Application Layer Protocol uses:RTSP attack:T1547.006:Kernel Modules and Extensions attack:T1564.001:Hidden Files and Directories attack:T1205:Traffic Signaling
Krasue Diamorphine https://github.com/timb-machine/linux-malware/issues/217 Suterusu https://github.com/timb-machine/linux-malware/issues/491 Rooty https://github.com/timb-machine/linux-malware/issues/440
No response
Linux
Area
Malware reports
Parent threat
Persistence, Privilege Escalation, Defense Evasion, Command and Control
Finding
https://www.group-ib.com/blog/krasue-rat/
Industry reference
uses:AbnormalSignal attack:T1071:Application Layer Protocol uses:RTSP attack:T1547.006:Kernel Modules and Extensions attack:T1564.001:Hidden Files and Directories attack:T1205:Traffic Signaling
Malware reference
Krasue Diamorphine https://github.com/timb-machine/linux-malware/issues/217 Suterusu https://github.com/timb-machine/linux-malware/issues/491 Rooty https://github.com/timb-machine/linux-malware/issues/440
Actor reference
No response
Component
Linux
Scenario
No response