Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea

Rekoobe is a backdoor known to be used by APT31, a threat group based in China. AhnLab Security Emergency Response Center (ASEC) has been receiving reports of the Rekoobe malware from tenants in Korea for several years, and will hereby share its brief analysis. Additionally, the Rekoobe variants will be categorized along with a summary … Continue reading Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea