# BUSHWALK > Tipo: **malware** · S1118 · [MITRE ATT&CK](https://attack.mitre.org/software/S1118) ## Descrição [[s1118-bushwalk|BUSHWALK]] é um web shell escrito em Perl que foi inserido no arquivo legítimo querymanifest.cgi em dispositivos Ivanti Connect Secure VPN comprometidos durante a [[cutting-edge|Cutting Edge]]. **Plataformas:** Network Devices ## Técnicas Utilizadas - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1205-traffic-signaling|T1205 - Traffic Signaling]] - [[t1505-003-web-shell|T1505.003 - Web Shell]] - [[t1554-compromise-host-software-binary|T1554 - Compromise Host Software Binary]] - [[t1140-deobfuscatedecode-files-or-information|T1140 - Deobfuscaté/Decode Files or Information]] - [[t1027-obfuscated-files-or-information|T1027 - Obfuscated Files or Information]] ## Referências - [MITRE ATT&CK - S1118](https://attack.mitre.org/software/S1118)