timb-machine/linux-malware

[Intel]: https://gist.github.com/EvergreenCartoons/51d7529eeb9191880beb8890cf9b1ace

timb-machine opened this issue · 0 comments

timb-machine commented

Area

Defensive tools

Parent threat

Persistence, Defense Evasion, Command and Control

Finding

https://gist.github.com/EvergreenCartoons/51d7529eeb9191880beb8890cf9b1ace

Industry reference

#571
attack:T1205.002:Socket Filters
attack:T1036:Masquerading
attack:T1070:Indicator Removal on Host
attack:T1205:Traffic Signaling

Malware reference

#420
#418
BPFDoor
Tricephalic Hellkeeper
Unix.Backdoor.RedMenshen
JustForFun

Actor reference

DecisiveArchitect

Component

Linux

Scenario

No response