AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1) - ASEC
Common Information
Type Value
UUID c5dd6fd3-54e5-4285-bfdb-3633cafd341b
Fingerprint fca78df6e96cacf7
Analysis status DONE
Considered CTI value 2
Text language
Published Sept. 30, 2024, 1:21 a.m.
Added to db Sept. 30, 2024, 3:53 a.m.
Last updated Oct. 10, 2024, 7:40 p.m.
Headline AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1)
Title AhnLab EDR을 활용한 리눅스 지속성 유지 기법 탐지 (1) - ASEC
Detected Hints/Tags/Attributes 25/2/11
Source URLs
RSS Feed
Attributes
Details Type #Events CTI Value
Details Domain 4
gcc.sh
Details Domain 4
libudev.so
Details Domain 1
cached.so
Details Domain 110
ld.so
Details Domain 12
libsystem.so
Details MITRE ATT&CK Techniques 461
T1053
Details MITRE ATT&CK Techniques 117
T1543
Details MITRE ATT&CK Techniques 12
T1574.006
Details MITRE ATT&CK Techniques 10
T1546.004
Details MITRE ATT&CK Techniques 29
T1053.003
Details MITRE ATT&CK Techniques 18
T1543.002