S0599ContainersLinux

S0599Kinsing

Platforms
2
ATT&CK
14.1
References
4

Description

[Kinsing](https://attack.mitre.org/software/S0599) is Golang-based malware that runs a cryptocurrency miner and attempts to spread itself to other hosts in the victim environment. (Citation: Aqua Kinsing April 2020)(Citation: Sysdig Kinsing November 2020)(Citation: Aqua Security Cloud Native Threat Report June 2021)

Platforms· 2

ContainersLinux

References

  1. https://attack.mitre.org/software/S0599
  2. https://blog.aquasec.com/threat-alert-kinsing-malware-container-vulnerability
  3. https://sysdig.com/blog/zoom-into-kinsing-kdevtmpfsi/
  4. https://info.aquasec.com/hubfs/Threat%20reports/AquaSecurity_Cloud_Native_Threat_Report_2021.pdf?utm_campaign=WP%20-%20Jun2021%20Nautilus%202021%20Threat%20Research%20Report&utm_medium=email&_hsmi=132931006&_hsenc=p2ANqtz-_8oopT5Uhqab8B7kE0l3iFo1koirxtyfTehxF7N-EdGYrwk30gfiwp5SiNlW3G0TNKZxUcDkYOtwQ9S6nNVNyEO-Dgrw&utm_content=132931006&utm_source=hs_automation

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
EKANS
Software
Skidmap
Software
KmsdBot
Software
CookieMiner
Software
WellMess
Software
SYNful Knock
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.