[Intel]: https://www.fortiguard.com/threat-signal-report/4735/new-shikitega-malware-targets-linux-machines #527
Assignees
Comments
timb-machine
moved this from Todo
to In Progress
in @timb-machine's linux-malware project
timb-machine
moved this from In Progress
to Todo
in @timb-machine's linux-malware project
timb-machine
added
ignore:tag:T1048
ignore:tag:T1070.004
ignore:tag:T1071.001
ignore:tag:T1491
ignore:tag:T1546.004
ignore:tag:T1567
and removed
missing:tactics
missing:tag:T1048
missing:tag:T1070.004
missing:tag:T1071.001
missing:tag:T1491
missing:tag:T1546.004
missing:tag:T1567
labels
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Area
Malware reports
Parent threat
Defense Evasion, Discovery, Execution, Persistence, Privilege Escalation
Finding
https://www.fortiguard.com/threat-signal-report/4735/new-shikitega-malware-targets-linux-machines
Industry reference
attack:T1036.005:Match Legitimate Name or Location
attack:T1059:Command and Scripting Interpreter
attack:T1569:System Service
attack:T1569.002:Service Execution
attack:T1543:Create or Modify System Process
attack:T1027:Obfuscated Files or Information
uses:Non-persistentStorage
attack:T1057:Process Discovery
attack:T1070.004:File Deletion
attack:T1546.004:Unix Shell
exploit:CVE-2021-3493
exploit:CVE-2021-4034
#510
Malware reference
Shikitega
/malware/binaries/Shikitega
XMRig
Actor reference
No response
Component
Linux
Scenario
No response
The text was updated successfully, but these errors were encountered: