[Intel]: https://asec.ahnlab.com/en/50316/ #621
Assignees
Labels
Comments
timb-machine
added
missing:tag:Non-persistentStorage
missing:tag:ProcessTreeSpoofing
missing:tag:RC Scripts
missing:tag:RedirectionToNull
missing:tag:T1005
missing:tag:T1021.002
missing:tag:T1027.002
missing:tag:T1048
missing:tag:T1057
missing:tag:T1070.004
missing:tag:T1071.001
missing:tag:T1222
missing:tag:T1491
missing:tag:T1548.001
missing:tag:T1560
missing:tag:T1562.004
missing:tag:T1567
missing:tag:T1573
and removed
confirmed
labels
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Area
Malware reports
Parent threat
Defense Evasion, Discovery, Command and Control, Impact
Finding
https://asec.ahnlab.com/en/50316/
Industry reference
attack:T1036.005:Match Legitimate Name or Location
attack:T1499:Endpoint Denial of Service
attack:T1082:System Information Discovery
attack:T1095:Non-Application Layer Protocol
uses:ProcessTreeSpoofing
uses:Non-persistentStorage
uses:RedirectionToNull
Malware reference
DDoSClient
Actor reference
ChinaZ
Component
Linux
Scenario
No response
The text was updated successfully, but these errors were encountered: