Remaiten is malware which infects Linux on embedded systems by brute forcing using frequently used default username and passwords combinations from a list in order to infect a system.
[1] Remaiten combines the features of the Tsunami and LizardStresser (aka Torlus) malware families.
This is an improvement over bots such as Tsunami and Torlus making Remaiten a greater threat than both combined.
[3] To avoid detection, Remaiten tries to determine the platform of a device to download the architecture-appropriate component from the command & control server.
[5] Remaiten is able to scan and remove competing bots on a system compromised by it.