DanderSpritz is a full-featured malware framework used by the Equation Group. The tool is a modular, stealthy, and fully functional framework that relies on dozens of plugins for post-exploitation activities on Windows and Linux hosts. DoubleFeature is a Python-based dashboard that also doubles up as a reporting utility to exfiltrate the logging information from the infected machine to an attacker-controlled server. Check Point researchers: “DoubleFeature could be used as a sort of Rosetta Stone for better understanding””]
Source: https://thehackernews.com/2021/12/experts-detail-logging-tool-of.html