MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [tool] SLUB Backdoor added

pull/356/head
Alexandre Dulaunoy 2019-03-07 15:51:16 +01:00
parent f7367ef887
commit 31ba566c18
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
clusters/tool.json
View File

@ -7552,7 +7552,17 @@
},
"uuid": "78ed653d-2d76-4a99-849e-1509e4573c32",
"value": "BabyShark"
},
{
"uuid": "bb6492fa-36b5-4f4a-a787-e718e7f9997f",
"value": "SLUB Backdoor",
"description": "The SLUB backdoor is a custom one written in the C++ programming language, statically linking curl library to perform multiple HTTP requests. Other statically-linked libraries are boost (for extracting commands from gist snippets) and JsonCpp (for parsing slack channel communication).",
"meta": {
"refs": [
"https://blog.trendmicro.com/trendlabs-security-intelligence/new-slub-backdoor-uses-github-communicates-via-slack/"
]
}
}
],
"version": 111
"version": 112
}