Difference between revisions of "Kelihos"
Jump to navigation
Jump to search
m (Text replacement - "=Unknown" to "=") |
|||
Line 4: | Line 4: | ||
[[Image:Kelihos-Infection.png]] | [[Image:Kelihos-Infection.png]] | ||
|Target=Microsoft Windows | |Target=Microsoft Windows | ||
|UserAgent= | |UserAgent= | ||
|CCProtocol=P2P | |CCProtocol=P2P | ||
|Feature=DDoS, Virtual machine detection, Fast flux, FTP password theft, Firefox password theft, Bitcoin mining, Bitcoin wallet theft, Keylogger, Winpcap interception, Double fastflux, USB vector, Send spam, | |Feature=DDoS, Virtual machine detection, Fast flux, FTP password theft, Firefox password theft, Bitcoin mining, Bitcoin wallet theft, Keylogger, Winpcap interception, Double fastflux, USB vector, Send spam, | ||
|CVE=CVE-2010-2568, | |CVE=CVE-2010-2568, | ||
|Status= | |Status= | ||
|BeginYear= | |BeginYear= | ||
|EndYear= | |EndYear= | ||
|Group=Spamming | |Group=Spamming | ||
|Fonctionnalités=* [[feature::Spam]] | |Fonctionnalités=* [[feature::Spam]] |
Latest revision as of 15:45, 8 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
Kelihos | |
---|---|
Alias | |
Group | Spamming |
Parent | |
Sibling | |
Family | |
Relations | Variants: Sibling of: |
Target | Microsoft Windows |
Origin | |
Distribution vector | |
UserAgent | |
CCProtocol | P2P (Decentralized) |
Activity | / |
Status | |
Language | |
Programming language | |
Operation/Working group | Operation b79 |
Introduction
First attempt to shut down this botnet was done by closing the cz.cc domain.
Features
CVE: CVE-2010-2568