Community Synonyms
- Named after its C2.
- Likely discovered under different names (TBD)
Detection Characteristics & Behavior
- The initial infection vector is targeting the recently reported vulnerability in ThinkPHP and uses command injection techniques for uploading a PHP shell that serves and executes a Perl backdoor.
Attribution links
- Check Point Researchers were able to correlate SpeakUp’s author with malware developer under the name of Zettabit.
Malware References
- https://research.checkpoint.com/speakup-a-new-undetected-backdoor-linux-trojan/
No comments:
Post a Comment