S0600LinuxContainers

S0600Doki

Platforms
2
ATT&CK
14.1
References
2

Description

[Doki](https://attack.mitre.org/software/S0600) is a backdoor that uses a unique Dogecoin-based Domain Generation Algorithm and was first observed in July 2020. [Doki](https://attack.mitre.org/software/S0600) was used in conjunction with the [ngrok](https://attack.mitre.org/software/S0508) Mining Botnet in a campaign that targeted Docker servers in cloud platforms. (Citation: Intezer Doki July 20)

Platforms· 2

LinuxContainers

References

  1. https://attack.mitre.org/software/S0600
  2. https://www.intezer.com/blog/cloud-security/watch-your-containers-doki-infecting-docker-servers-in-the-cloud/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Donut
Software
SDBbot
Software
Anchor
Software
Dok
Software
DogeCrypt
Software
Tomiris
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.