jtryynanen.hashnode.devPeak Into a Bash DropperShort write-up of a bash dropper used to deploy malware to Linux systems. The script contains shared enumeration for discovering targets for malware, delays in execution for evading defenses, and dropping and executing embedded payloads. Sample SHA-2...5d ago·2 min read
jtryynanen.hashnode.devFrom SSH Brute Force to MalwareShort write-up of an intrusion on my personal honeypot. SSH Login Intrusion began with successful ssh login from 130[.]12[.]180[.]51. Session was used to execute shell command downloading 1st stage payload from hxxps[://]178[.]16[.]55[.]224/sh. uname...Feb 9·2 min read
