Skip to content

[Intel]: https://vms.drweb.com/virus/?i=21004786 #433

New issue
New issue
Open
Open
[Intel]: https://vms.drweb.com/virus/?i=21004786#433
Assignees
timb-machine
Labels
missing:tag:JavaScriptmissing:tag:Non-persistentStoragemissing:tag:T1048missing:tag:T1070.004missing:tag:T1071.001missing:tag:T1222missing:tag:T1491missing:tag:T1546.004missing:tag:T1548.001missing:tag:T1567missing:tag:T1573missing:tag:T1574.007new
@timb-machine

Description

@timb-machine
timb-machine
opened on May 18, 2022

Area

Malware reports

Parent threat

Persistence, Defense Evasion

Finding

https://vms.drweb.com/virus/?i=21004786

Industry reference

attack:T1205.002:Socket Filters
attack:T1036:Masquerading

Malware reference

BPFDoor
Tricephalic Hellkeeper
Unix.Backdoor.RedMenshen
JustForFun

Actor reference

DecisiveArchitect

Component

Linux

Scenario

No response

Metadata

Metadata