From afaf3a3110b23808a25306380d5fadac257bcb83 Mon Sep 17 00:00:00 2001
From: Thomas Dupuy <thom4s.d@gmail.com>
Date: Wed, 12 Jan 2022 13:37:59 -0500
Subject: [PATCH] Add Motnug tool.

---
 clusters/tool.json | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/clusters/tool.json b/clusters/tool.json
index e46e1665..0f490180 100644
--- a/clusters/tool.json
+++ b/clusters/tool.json
@@ -8450,7 +8450,18 @@
       },
       "uuid": "d5b31712-a5b4-4b1c-9a74-4340abc61210",
       "value": "ESPecter bootkit"
+    },
+    {
+      "description": "Motnug is a simple shellcode loader that is used to load and execute shellcode located either in its overlay or in a separate file stored on disk.",
+      "meta": {
+        "refs": [
+          "https://www.welivesecurity.com/2021/08/24/sidewalk-may-be-as-dangerous-as-crosswalk/",
+          "https://www.welivesecurity.com/2021/09/23/famoussparrow-suspicious-hotel-guest/"
+        ]
+      },
+      "uuid": "f3bae23a-ec73-49cb-8149-f93578bb2bff",
+      "value": "Motnug"
     }
   ],
-  "version": 148
+  "version": 149
 }