Difference between revisions of "DarkMegi"
Jump to navigation
Jump to search
(Created page with "{{Botnet |Alias=NpcDark, |Vector=Gong Da, Blackhole, |CCProtocol=HTTP, |CVE=CVE-2012-0003, |SymantecDocID=2012-012709-1537-99, |BeginYear=2011 |Group=Downloading, Trojan, }}") |
|||
| Line 8: | Line 8: | ||
|Group=Downloading, Trojan, | |Group=Downloading, Trojan, | ||
}} | }} | ||
McAfee: Generic PWS.y!dwn!4258E30CC432 | |||
Latest revision as of 17:38, 27 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
| DarkMegi | |
|---|---|
| Alias | NpcDark |
| Group | Downloading, Trojan |
| Parent | |
| Sibling | |
| Family | |
| Relations | Variants: Sibling of: |
| Target | |
| Origin | |
| Distribution vector | Gong Da, Blackhole |
| UserAgent | |
| CCProtocol | HTTP (Centralized) |
| Activity | 2011 / |
| Status | |
| Language | |
| Programming language | |
| Operation/Working group | |
Introduction
Features
CVE: CVE-2012-0003
Associated images
Checksums / AV databases
- Symantec: 2012-012709-1537-99
Publications
| Author | Editor | Year | |
|---|---|---|---|
| Analysis of DarkMegi aka NpcDark | Kimberly | StopMalvertising | 2012 |
| DarkMegi rootkit - sample (distributed via Blackhole) | Mila Parkour | Contagio | 2012 |
McAfee: Generic PWS.y!dwn!4258E30CC432