VERY IMPORTANT

FontOnLake is a malware family utilizing well-designed custom modules that are constantly under development. It targets systems running Linux and provides remote access to those systems for its operators, collects credentials, and serves as a proxy server. Its presence is always accompanied by a rootkit, which conceals its existence. Their sneaky nature and advanced design suggest that these tools are used in targeted attacks; the location of the C&C server and the countries from which the samples were uploaded to VirusTotal might indicate that its operators target at least Southeast Asia.