Tag: ioc

• Nov 30, 2024

  REKOOBE APT-31 Linux Backdoor Analysis

  In this post I will be taking a look at a Linux backdoor known as REKOOBE¹

  1. https://malpedia.caad.fkie.fraunhofer.de/details/elf.rekoobe ↩

• Sep 24, 2024

  WARMCOOKIE Incident Walk-Through

  This walk-through will be dissecting a WARMCOOKIE infection chain from the perspective of a network packet capture and Suricata alerts. The various artefacts for this incident are kindly provided by @malware_traffic and located at malware-traffic-analysis.net.