{
  "name": "FASTCash for Linux",
  "slug": "fastcash-for-linux",
  "description": "A newly identified variant of FASTCash \"payment switch\" malware specifically targets the Linux operating system, as well as Microsoft Windows, according to CISA and the Department of Homeland Security (DHS).",
  "published": "2024-10-15T15:58:32+00:00",
  "created_at": "2024-10-15T15:58:32+00:00",
  "modified_at": "2024-10-15T16:18:14+00:00",
  "created_at_opencti": "2024-10-15T15:58:32+00:00",
  "author": "",
  "confidence": null,
  "report_types": [],
  "labels": [],
  "tags": [
    "2024-10-15",
    "aix",
    "atmpos",
    "atms",
    "bluenoroff",
    "cisa",
    "code",
    "fastcash",
    "format",
    "linux",
    "linux sample",
    "linux variant",
    "lira",
    "malware",
    "triton",
    "ubuntu linux",
    "windows"
  ],
  "related_entities": {
    "observables": [
      {
        "id": "",
        "name": "f43d4e7e2ab1054d46e2a93ce37d03aff3a85e0dff2dd7677f4f7fb9abe1abc8"
      },
      {
        "id": "",
        "name": "f34b532117b3431387f11e3d92dc9ff417ec5dcee38a0175d39e323e5fdb1d2c"
      },
      {
        "id": "",
        "name": "c3904f5e36d7f45d99276c53fed5e4dde849981c2619eaa4dbbac66a38181cbe"
      },
      {
        "id": "",
        "name": "afff4d4deb46a01716a4a3eb7f80da58e027075178b9aa438e12ea24eedea4b0"
      },
      {
        "id": "",
        "name": "7f3d046b2c5d8c008164408a24cac7e820467ff0dd9764e1d6ac4e70623a1071"
      },
      {
        "id": "",
        "name": "609a5b9c98ec40f93567fbc298d4c3b2f9114808dfbe42eb4939f0c5d1d63d44"
      },
      {
        "id": "",
        "name": "5232d942da0a86ff4a7ff29a9affbb5bd531a5393aa5b81b61fe3044c72c1c00"
      },
      {
        "id": "",
        "name": "3a5ba44f140821849de2d82d5a137c3bb5a736130dddb86b296d94e6b421594c"
      },
      {
        "id": "",
        "name": "2611f784e3e7f4cf16240a112c74b5bcd1a04067eff722390f5560ae95d86361"
      },
      {
        "id": "",
        "name": "129b8825eaf61dcc2321aad7b84632233fa4bbc7e24bdf123b507157353930f0"
      },
      {
        "id": "",
        "name": "10ac312c8dd02e417dd24d53c99525c29d74dcbc84730351ad7a4e0a4b1a0eba"
      },
      {
        "id": "",
        "name": "078f284536420db1022475dc650327a6fd46ec0ac068fe07f2e2f925a924db49"
      }
    ],
    "malware": [
      {
        "id": "legacy:malware:6a5b0ce2449a80f2",
        "name": "FASTCash",
        "slug": "fastcash"
      },
      {
        "id": "legacy:malware:635bbff4cbba2e79",
        "name": "AIX",
        "slug": "aix"
      },
      {
        "id": "legacy:malware:ab378b80a8a4aafa",
        "name": "Windows",
        "slug": "windows"
      },
      {
        "id": "legacy:malware:ba324ca7b1c77fc2",
        "name": "Linux",
        "slug": "linux"
      }
    ],
    "attack_patterns": [
      {
        "id": "469ac6f1-45e1-4965-b1fa-0bb3e7def5ae",
        "name": "T1111"
      },
      {
        "id": "a72ebeae-8e62-4039-8135-e9c611011fdc",
        "name": "T1573"
      },
      {
        "id": "c3af9fd7-d307-4df4-9220-cc627938fb85",
        "name": "T1055"
      },
      {
        "id": "0c836307-129e-4ff7-a532-180c633cacba",
        "name": "T1027"
      },
      {
        "id": "0b2b1ecd-d52e-492a-af08-050954bc03e5",
        "name": "T1056"
      },
      {
        "id": "9b6064e6-a05b-4e95-baf5-34d180bc9221",
        "name": "T1059"
      }
    ]
  },
  "external_refs": [
    "https://doubleagent.net/fastcash-for-linux/",
    "https://otx.alienvault.com/pulse/670ead49449b8caec5e64437"
  ]
}