[Intel]: https://github.com/Neo23x0/signature-base/blob/master/yara/mal_lnx_implant_may22.yar

### Area

Other rules

### Parent threat

_No response_

### Finding

https://github.com/Neo23x0/signature-base/blob/master/yara/mal_lnx_implant_may22.yar

### Industry reference

attack:T1205.002:Socket Filters

### Malware reference

BPFDoor
Tricephalic Hellkeeper
Unix.Backdoor.RedMenshen
JustForFun
https://github.com/timb-machine/linux-malware/issues/418

### Actor reference

DecisiveArchitect

### Component

Linux

### Scenario

_No response_




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Intel]: https://github.com/Neo23x0/signature-base/blob/master/yara/mal_lnx_implant_may22.yar #419

Area

Parent threat

Finding

Industry reference

Malware reference

Actor reference

Component

Scenario

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development