Threat Advisories

Unveiling Lu0Bot Malware A Node.js-Based Threat

October 14, 2023

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

Lu0Bot Malware, a Node.js-based threat, surfaced in February 2021 as a secondary payload in GCleaner attacks. This malware acts as a bot, responding to C2 server commands and transmitting encrypted system data while employing intricate obfuscation techniques for stealth.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Deciphering Mirai’s Next Chapter: the Strategies of the Latest Players

GNOME Linux Systems Exposed to 1-Click RCE Attacks