MDK: the largest mobile botnet in China
Revision as of 12:33, 26 January 2013 by Eric.freyssinet (talk | contribs)
(Publication) Google search: [1]
| MDK: the largest mobile botnet in China | |
|---|---|
| Botnet | MDK |
| Malware | |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2013 / 2013-01-25 |
| Editor/Conference | Symantec |
| Link | http://www.symantec.com/connect/ko/blogs/mdk-largest-mobile-botnet-china www.symantec.com (www.symantec.com Archive copy) |
| Author | Flora Liu |
| Type | Blogpost |
Abstract
“ Symantec’s analysis suggests the MDK Trojan is a new variant of Android.Backscript. Our detection for this threat family has been in place since September 2012. The code of MDK is very similar to Android.Backscript and they use the same certificate to sign APKs. However, unlike the previous versions, this new variant uses an Advanced Encryption Standard (AES) algorithm to encrypt data, like servers and commands, in a file.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2013BFR1287,
editor = {Symantec},
author = {Flora Liu},
title = {MDK: the largest mobile botnet in China},
date = {25},
month = Jan,
year = {2013},
howpublished = {\url{http://www.symantec.com/connect/ko/blogs/mdk-largest-mobile-botnet-china www.symantec.com}},
}