all InfoSec news
BlueShell Used in APT Attacks Against Korean and Thai Targets
Malware Analysis, News and Indicators - Latest topics malware.news
BlueShell is a backdoor developed in Go. It is available on GitHub and supports Windows, Linux, and Mac operating systems. Currently, it seems the original GitHub repository has been deleted, but the BlueShell source code can be downloaded from other repositories. Notably, the ReadMe file containing the guidelines is in Chinese, and this suggests that the creator may be a Chinese speaker.
Figure 1. BlueShell published on GitHub
There aren’t many cases where BlueShell is known to have been used …
apt attacks backdoor blueshell code file github guidelines linux mac malware analysis operating systems repositories repository source code systems windows