ET MALWARE Reptile Linux LKM Rootkit Backdoor Activity

SID: 2048042Rev: 15 views
History
Sourceet/open
CreatedSeptember 12, 2023
UpdatedSeptember 12, 2023
Classificationtrojan-activity
alert tcp any 666 -> any 4444 (msg:"ET MALWARE Reptile Linux LKM Rootkit Backdoor Activity"; flow:not_established; dsize:<40; content:"hax0r"; fast_pattern; reference:url,github.com/f0rb1dd3n/Reptile; classtype:trojan-activity; sid:2048042; rev:1; metadata:attack_target Linux_Unix, created_at 2023_09_12, deployment Perimeter, performance_impact Low, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2023_09_12, reviewed_at 2023_09_12; target:dest_ip;)

References

urlgithub.com/f0rb1dd3n/Reptile

Metadata

attack targetLinux_Unix
created at2023_09_12
deploymentPerimeter
performance impactLow
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2023_09_12
reviewed at2023_09_12

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!