[Intel]: https://www.uptycs.com/blog/threat-research-report-team/new-poc-exploit-backdoor-malware

[timb-machine]

Area

Malware reports

Parent threat

Resource Development, Initial Access, Execution, Persistence, Defense Evasion

Finding

https://www.uptycs.com/blog/threat-research-report-team/new-poc-exploit-backdoor-malware

Industry reference

uses:Non-persistentStorage
uses:FakeExploit
attack:T1588:Obtain Capabilities
attack:T1608:Stage Capabilities
attack:T1585:Establish Accounts
attack:T1583.008:Malvertising
attack:T1036:Masquerading
attack:T1037.004:RC Scripts
attack:T1098.004: SSH Authorized Keys
exploit:CVE-2023-35829

Malware reference

#710
#711
#724

Actor reference

No response

Component

Linux

Scenario

No response