RustDoor has various commands to control compromised systems, exfiltrate data, and establish persistence, and it has been distributed under multiple names while remaining undetected for at least three months.