Difference between revisions of "DarkMegi"
Jump to navigation
Jump to search
(Created page with "{{Botnet |Alias=NpcDark, |Vector=Gong Da, Blackhole, |CCProtocol=HTTP, |CVE=CVE-2012-0003, |SymantecDocID=2012-012709-1537-99, |BeginYear=2011 |Group=Downloading, Trojan, }}") |
|||
Line 8: | Line 8: | ||
|Group=Downloading, Trojan, | |Group=Downloading, Trojan, | ||
}} | }} | ||
McAfee: Generic PWS.y!dwn!4258E30CC432 |
Latest revision as of 17:38, 27 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
DarkMegi | |
---|---|
Alias | NpcDark |
Group | Downloading, Trojan |
Parent | |
Sibling | |
Family | |
Relations | Variants: Sibling of: |
Target | |
Origin | |
Distribution vector | Gong Da, Blackhole |
UserAgent | |
CCProtocol | HTTP (Centralized) |
Activity | 2011 / |
Status | |
Language | |
Programming language | |
Operation/Working group |
Introduction
Features
CVE: CVE-2012-0003
Associated images
Checksums / AV databases
- Symantec: 2012-012709-1537-99
Publications
Author | Editor | Year | |
---|---|---|---|
Analysis of DarkMegi aka NpcDark | Kimberly | StopMalvertising | 2012 |
DarkMegi rootkit - sample (distributed via Blackhole) | Mila Parkour | Contagio | 2012 |
McAfee: Generic PWS.y!dwn!4258E30CC432