AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1) - ASEC
Tags
Common Information
Type | Value |
---|---|
UUID | c5dd6fd3-54e5-4285-bfdb-3633cafd341b |
Fingerprint | fca78df6e96cacf7 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Sept. 30, 2024, 1:21 a.m. |
Added to db | Sept. 30, 2024, 3:53 a.m. |
Last updated | Oct. 10, 2024, 7:40 p.m. |
Headline | AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1) |
Title | AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1) - ASEC |
Detected Hints/Tags/Attributes | 25/2/11 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://asec.ahnlab.com/ko/83437/ |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 18 | ✔ | ASEC | https://asec.ahnlab.com/ko/feed/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 4 | gcc.sh |
|
Details | Domain | 4 | libudev.so |
|
Details | Domain | 1 | cached.so |
|
Details | Domain | 110 | ld.so |
|
Details | Domain | 12 | libsystem.so |
|
Details | MITRE ATT&CK Techniques | 461 | T1053 |
|
Details | MITRE ATT&CK Techniques | 117 | T1543 |
|
Details | MITRE ATT&CK Techniques | 12 | T1574.006 |
|
Details | MITRE ATT&CK Techniques | 10 | T1546.004 |
|
Details | MITRE ATT&CK Techniques | 29 | T1053.003 |
|
Details | MITRE ATT&CK Techniques | 18 | T1543.002 |