Félix Brezo<p>From a <a href="https://mastodon.social/tags/ThreatIntelligence" class="mention hashtag" rel="tag">#<span>ThreatIntelligence</span></a> perspective, the <a href="https://mastodon.social/tags/TTPs" class="mention hashtag" rel="tag">#<span>TTPs</span></a> would be:</p><p>- <a href="https://mastodon.social/tags/T1059" class="mention hashtag" rel="tag">#<span>T1059</span></a>.003: Command and Scripting Interpreter: Unix Shell. SHC payloads to be run still need a shell to be identified in the system and that the code inside the payload is, in fact, a shell script.<br />- <a href="https://mastodon.social/tags/T1027" class="mention hashtag" rel="tag">#<span>T1027</span></a>.002: Obfuscated Files or Information: Software Packed with <a href="https://mastodon.social/tags/SHC" class="mention hashtag" rel="tag">#<span>SHC</span></a>.<br />- <a href="https://mastodon.social/tags/T1622" class="mention hashtag" rel="tag">#<span>T1622</span></a>: Debugger Evasion by using SHC with '-r'.<br />- <a href="https://mastodon.social/tags/T1105" class="mention hashtag" rel="tag">#<span>T1105</span></a>: Ingress Tool Transfer by downloading payloads from Github.<br />- <a href="https://mastodon.social/tags/T1496" class="mention hashtag" rel="tag">#<span>T1496</span></a>: Resource Hijacking with <a href="https://mastodon.social/tags/XMRig" class="mention hashtag" rel="tag">#<span>XMRig</span></a>.</p>
mastodon.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
The original server operated by the Mastodon gGmbH non-profit
Administered by:
Server stats:
330Kactive users
mastodon.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-nightly.2025-04-28
#T1027
0 posts · 0 participants · 0 posts today
Oliv<p>Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File <a href="https://thehackernews.com/2022/11/researchers-uncover-pypi-package-hiding.html" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2022/11/rese</span><span class="invisible">archers-uncover-pypi-package-hiding.html</span></a> <a href="https://mastodon.feedly.com/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://mastodon.feedly.com/tags/cybersec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersec</span></a> <a href="https://mastodon.feedly.com/tags/T1027" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>T1027</span></a>.003 <a href="https://mastodon.feedly.com/tags/T1027" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>T1027</span></a> <a href="https://mastodon.feedly.com/tags/T1105" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>T1105</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload