OrBit (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

elf.orbit (Back to overview)

OrBit

According to stormshield, Orbit is a two-stage malware that appeared in July 2022, discovered by Intezer lab. Acting as a stealer and backdoor on 64-bit Linux systems, it consists of an executable acting as a dropper and a dynamic library.

References

2022-07-06 ⋅ Intezer ⋅ Nicole Fishbein
OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow
HiddenWasp OrBit Symbiote

There is no Yara-Signature yet.

OrBit Propose Change

References

OrBit