HOMETHREATSP2Pinfect
APT / THREAT GROUP

P2Pinfect

2
aliases
Last seen:Mar 17, 2026

Intelligence Profile

P2Pinfect is a fast-growing multi platform botnet, the purpose of which is still unknown. Written in Rust, it is compatible with Windows and Linux, including a MIPS variant for Linux based routers and IoT devices. It is capable of brute forcing SSH logins and exploiting Redis servers in order to propagate itself both to random IPs on the internet and to hosts it can find references to in files present on the infected system.

Threat Analysis

P2Pinfect is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases2

Also Known As

P2Pinfectelf.p2pinfect

External Intelligence

Malpedia: elf.p2pinfect

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.
P2Pinfect — APT / Threat Group | Threat Intelligence | CTIWATCH.COM