ChainLine (7a6105a0-11e7-4df5-a31d-ea39faf19136)
ChainLine is a Python web shell backdoor that is embedded in a Ivanti Connect Secure Python package that enables arbitrary command execution.[Mandiant Cutting Edge Part 2 January 2024]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
ChainLine (7a6105a0-11e7-4df5-a31d-ea39faf19136) | Tidal Software | UNC5221 (71e9b27e-8d68-4ed6-b3ab-14142558b9ff) | Tidal Groups | 1 |