[Intel]: https://sandflysecurity.com/blog/detecting-linux-binary-file-poisoning/ #719

timb-machine · 2023-07-14T22:48:23Z

Defensive techniques

Execution, Persistence, Privilege Escalation, Defense Evasion

attack:T1574:Hijack Execution Flow
attack:T1204:User Execution
attack:T1218:System Binary Proxy Execution
attack:T1036.003:Rename System Utilities

No response

No response

Linux, AIX, Solaris, HP-UX

No response

timb-machine added the confirmed label Jul 14, 2023

timb-machine self-assigned this Jul 14, 2023

Provide feedback