SYMBOLCOMMON_NAMEaka. SYNONYMS
elf.botenago (Back to overview)

BotenaGo

According to Alien Labs, this malware targets embedded devices including routers with more than 30 exploits.
SourceCode: https://github.com/Egida/kek/blob/19991ef983f838287aa9362b78b4ed8da0929184/loader_multi.go (2021-10-16)

References
2022-09-06AT&TOfer Caspi
@online{caspi:20220906:shikitega:bee20db, author = {Ofer Caspi}, title = {{Shikitega - New stealthy malware targeting Linux}}, date = {2022-09-06}, organization = {AT&T}, url = {https://cybersecurity.att.com/blogs/labs-research/shikitega-new-stealthy-malware-targeting-linux}, language = {English}, urldate = {2023-01-19} } Shikitega - New stealthy malware targeting Linux
BotenaGo EnemyBot Meterpreter Monero Miner
2022-04-18Nozomi NetworksNozomi Networks Labs
@online{labs:20220418:new:5cad966, author = {Nozomi Networks Labs}, title = {{New BotenaGo Variant Discovered by Nozomi Networks Labs}}, date = {2022-04-18}, organization = {Nozomi Networks}, url = {https://www.nozominetworks.com/blog/new-botenago-variant-discovered-by-nozomi-networks-labs/}, language = {English}, urldate = {2022-04-20} } New BotenaGo Variant Discovered by Nozomi Networks Labs
BotenaGo
2022-01-26AT&T CybersecurityOfer Caspi
@online{caspi:20220126:botenago:0c74142, author = {Ofer Caspi}, title = {{BotenaGo strikes again - malware source code uploaded to GitHub}}, date = {2022-01-26}, organization = {AT&T Cybersecurity}, url = {https://cybersecurity.att.com/blogs/labs-research/botenago-strike-again-malware-source-code-uploaded-to-github}, language = {English}, urldate = {2022-04-24} } BotenaGo strikes again - malware source code uploaded to GitHub
BotenaGo
2022-01-12LIFARS
@online{lifars:20220112:newly:118dea5, author = {LIFARS}, title = {{Newly Found Malware Threatens IoT Devices}}, date = {2022-01-12}, url = {https://lifars.com/2022/01/newly-found-malware-threatens-iot-devices/}, language = {English}, urldate = {2022-01-24} } Newly Found Malware Threatens IoT Devices
BotenaGo
2021-11-11AT&TOfer Caspi
@online{caspi:20211111:att:4c2bbed, author = {Ofer Caspi}, title = {{AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits}}, date = {2021-11-11}, organization = {AT&T}, url = {https://cybersecurity.att.com/blogs/labs-research/att-alien-labs-finds-new-golang-malwarebotenago-targeting-millions-of-routers-and-iot-devices-with-more-than-30-exploits}, language = {English}, urldate = {2021-11-17} } AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits
BotenaGo

There is no Yara-Signature yet.