A new cross-platform malware called Noodle RAT, utilized by Chinese-speaking threat actors, has been targeting Windows and Linux systems for years. It is a new type of backdoor, not a variant of existing malware. The Windows version is used by hacking crews like Iron Tiger and Calypso, with features including file download/upload, running malware, acting as a TCP proxy, and self-deletion. The Linux version is used by cybercrime and espionage clusters, with features including launching a reverse shell, file download/upload, execution scheduling, and SOCKS tunneling.
Sort: