Kitsune

PUMAKIT isn’t your everyday piece of malware—it’s a cunning Linux rootkit that stays hidden in plain sight. Through a mix of memory-only binaries, loadable kernel modules, and clever syscall hooking, it achieves deep system infiltration without leaving obvious footprints behind. Unlike traditional rootkits, PUMAKIT twists even the simplest commands to its advantage, using tactics like hooking the rmdir() syscall for privilege escalation. It’s also not shy about communicating with remote command-and-control servers, ensuring it remains well-managed and flexible over time. ...