Blackrota, a heavily obfuscated backdoor written in Go
released on 2020-11-24 @ 08:14:42 PM
Recently, a malicious backdoor program written in the Go language that exploits an unauthorized access vulnerability in the Docker Remote API was caught by the NetLab 360 Anglerfish honeypot. We named it Blackrota, given that its C2 domain name is blackrota[.]ga.