Binary Padding - Linux (c52a914f-3d8b-4b2a-bb75-b3991e75f8ba)

Adversaries may use binary padding to add junk data and change the on-disk representation of malware. This rule detect using dd and truncate to add a junk data to file.

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Binary Padding - Linux (c52a914f-3d8b-4b2a-bb75-b3991e75f8ba)	Sigma-Rules	Binary Padding - T1027.001 (5bfccc3f-2326-4112-86cc-c1ece9d8a2b5)	Attack Pattern	1
Obfuscated Files or Information - T1027 (b3d682b6-98f2-4fb0-aa3b-b4df007ca70a)	Attack Pattern	Binary Padding - T1027.001 (5bfccc3f-2326-4112-86cc-c1ece9d8a2b5)	Attack Pattern	2