Hadooken: A Linux Malware Targeting Oracle WebLogic Servers
Aqua Nautilus researchers identified a new Linux malware targeting Weblogic servers. The main payload calls itself Hadooken, a potential reference to the Hadouken attack (or “surge fist”) in the Street Fighter video game series. When Hadooken is executed, it drops a Tsunami malware and deploys a cryptominer. In this article, we explain the malware, its components, and how it was detected.