chg: [tool] SLUB Backdoor added

This commit is contained in:
Alexandre Dulaunoy 2019-03-07 15:51:16 +01:00
parent f7367ef887
commit 31ba566c18
Signed by: adulau
GPG key ID: 09E2CD4944E6CBCD

View file

@ -7552,7 +7552,17 @@
},
"uuid": "78ed653d-2d76-4a99-849e-1509e4573c32",
"value": "BabyShark"
},
{
"uuid": "bb6492fa-36b5-4f4a-a787-e718e7f9997f",
"value": "SLUB Backdoor",
"description": "The SLUB backdoor is a custom one written in the C++ programming language, statically linking curl library to perform multiple HTTP requests. Other statically-linked libraries are boost (for extracting commands from gist snippets) and JsonCpp (for parsing slack channel communication).",
"meta": {
"refs": [
"https://blog.trendmicro.com/trendlabs-security-intelligence/new-slub-backdoor-uses-github-communicates-via-slack/"
]
}
}
],
"version": 111
"version": 112
}