Still reading it (and I think I'll have to re-read the mitigation section a few times), but it strikes me that its current form heaviliy relies on Windows-specific mechanisms to keep itself deeply hidden and obfuscated.
I am not so certain that you can just cross compile it to work like that on MacOS and Linux and remain as hidden - I'd love to see that analysed separately.
That said, it's definitely good engineering for the dark side - some of the traffic obfuscation techniques I've been thinking of myself, and IPv6 gives you even more tools to hide a covert export and C&C channel. This is very worrying software.
Now, if you will excuse me, there's some moron playing Rocco Granata's "Marina" on a PA system, I just have to dig up my insulated wire cutters..