MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-27 01:07:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add Drovorub tool

Browse source
This commit is contained in:
Thomas Dupuy 2020-08-13 15:08:32 -04:00
parent 4130d7c6fc
commit 72554ed71c
1 changed files with 18 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
clusters/tool.json
View file

@ -8126,7 +8126,23 @@
"related": [], "related": [],
"uuid": "59266c02-e3c8-47a6-b00c-bbb50c8975e9", "uuid": "59266c02-e3c8-47a6-b00c-bbb50c8975e9",
"value": "WellMail" "value": "WellMail"
} },
{
"description": "Drovorub is a Linux malware toolset consisting of an implant coupled with a kernel module rootkit, a file transfer and port forwarding tool, and a Command and Control (C2) server.",
"meta": {
"refs": [
"https://media.defense.gov/2020/Aug/13/2002476465/-1/-1/0/CSA_DROVORUB_RUSSIAN_GRU_MALWARE_AUG_2020.PDF"
],
"synonyms": [],
"type": [
"Backdoor",
"Rootkit"
]
},
"related": [],
"uuid": "a0a46c1b-e774-410e-a84b-020b2558d851",
"value": "Drovorub"
},
], ],
"version": 137 "version": 138
} }