Difference between revisions of "Main Page"

From Botnets.fr
Jump to navigation Jump to search
(168 intermediate revisions by the same user not shown)
Line 1: Line 1:
__NOTOC__
__NOTOC__


Thank you for your patience, the botnets.fr Wiki is being rebuilt.
Thank you for your patience, the botnets.fr Wiki is being rebuilt (the previous wiki is still available at https://www.botnets.fr/wiki.old)
[[File:under_construction.jpg|thumb|150px]]


[[File:under_construction.jpg|thumb|150px]]
== Introduction ==
This semantic Wiki is developed since November 2011 in the context of a PhD work on the fight against botnets conducted at the LIP 6 laboratory in Paris (Complex networks team). The PhD was successfully [http://blog.crimenumerique.fr/2015/11/21/lutte-contre-les-botnets/ defended in November 2015 in Paris], France. But work continues...


== Botnets ==
{{Div col|3}}
{{Div col|3}}
=== A ===
=== A ===
* [[AbaddonPOS]]
* [[Accdfisa]]
* [[Accdfisa]]
* [[Acebot]]
* [[Acebot]]
* [[Ackposts]]
* [[Admin.HLP]]
* [[Admin.HLP]]
* [[Adneukine]]
* [[Adrenalin]]
* [[Adrenalin]]
* [[Agobot]] / [[Gaobot]] Related families: [[Phatbot]], [[Forbot]], [[Polybot]], [[XtremBot]]
* [[Agobot]] / [[Gaobot]] Related families: [[Phatbot]], [[Forbot]], [[Polybot]], [[XtremBot]]
* [[Ainslot]]
* [[Ainslot]]
* [[Akbot]] / Qakbot, Pinkslipbot, Qbot
* [[Akbot]] / [[Qakbot]], [[Pinkslipbot]], [[Qbot]]
* [[Aldi]]
* [[Aldi]]
* [[Alebrije]]
* [[Alebrije]]
* [[AlertLock]]
* [[AlertLock]]
* [[Alina]]
* [[Alphacrypt]]
* [[Alureon]] / [[Olmarik]], [[TDSS]], [[TDL]], [[Popureb]]
* [[Alureon]] / [[Olmarik]], [[TDSS]], [[TDL]], [[Popureb]]
* [[Americana Dreams]]
* [[Americana Dreams]]
* [[Android.Bmaster]]
* [[Andromeda]] / [[Gamarue]]
* [[Andromeda]] / [[Gamarue]]
* [[AnnLoader]]
* [[AnnLoader]]
Line 26: Line 33:
* [[Asprox]] / [[Badsrc]], [[Aseljo]]
* [[Asprox]] / [[Badsrc]], [[Aseljo]]
* [[Athena]]
* [[Athena]]
* Atrax
* [[Atrax]]
* Avalanche
* [[Avalanche]]
* Avatar
* [[Avatar]]
* Avzahn
* [[Avzahn]]
 
=== B ===
=== B ===
* [[Backscript]]
* [[Backscript]]
Line 37: Line 45:
* [[Bamital]]
* [[Bamital]]
* [[Barracuda]]
* [[Barracuda]]
* [[Bashlight]]
* [[Bedep]]
* [[Beebone]] / [[Symmi]], [[Changeup]], [[Vobfus]]
* [[Bereb]] / Related to [[Kiribot]]
* [[Bereb]] / Related to [[Kiribot]]
* [[BernhardPOS]]
* [[BlackEnergy]]
* [[BlackEnergy]]
* [[BlackPOS]] / [[Dump Memory Grabber]]
* [[BlackShades]]
* [[BlackShades]]
* [[Bmaster]]
* [[Bobax]] / [[Bobic]], [[Oderoor]], [[Cotmonger]], [[Hacktool.Spammer]], [[Kraken]]
* [[Bobax]] / [[Bobic]], [[Oderoor]], [[Cotmonger]], [[Hacktool.Spammer]], [[Kraken]]
* [[Bomba Locker]]
* [[Boxer]]
* [[Bozok]]
* [[Bredolab]]
* [[Bredolab]]
* [[BrutPOS]]


=== C ===
=== C ===
* Carberp / Caberp, Syscron
* [[Carbanak]]
* Cerberus
* [[Carberp]] / [[Caberp]], [[Syscron]]
* Chameleon
* [[Carna]]
* Cimbot
* [[Casier]]
* Citadel
* [[Cbeplay.P]]
* Clampi / Ligats, Ilomo or Rscan
* [[Cerber]]
* Conficker / Downup, Downadup, Kido
* [[Cerberus]]
* Coreflood
* [[Chameleon]]
* Cridex / Bugat, Feodo
* [[ChewBacca]]
* Critroni / CTB-Locker
* [[Chidol]]
* Cutwail / Pandex, Mutant
* [[Chthonic]]
* Cythosia
* [[Cimbot]]
*
* [[Citadel]]
* [[Clampi]] / [[Ligats]], [[Ilomo]] or [[Rscan]]
* [[Coinbitclip]]
* [[CoinVault]]
* [[Comfoo]]
* [[Conficker]] / [[Downup]], [[Downadup]], [[Kido]]
* [[CoreBot]]
* [[Coreflood]]
* [[Coverton]]
* [[Cridex]] / [[Bugat]], [[Feodo]]
* [[Critroni]] / [[CTB-Locker]]
* [[Cryakl]] / [[Fantomas]]
* [[CryptoDefense]]
* [[CryptoLocker]]
* [[Cryptoblocker]]
* [[CryptXXX]]
* [[Cutwail]] / [[Pandex]], [[Mutant]]
* [[Cythosia]]
 
=== D ===
=== D ===
* DaRK DDoSseR
* [[Daredevil]]
* Dark-Mailer
* [[DaRK DDoSseR]]
* DarkComet
* [[Dark-Mailer]]
* Darkness / Optima, Votwup
* [[DarkComet]]
* Dirt Jumper
* [[DarkMegi]]
* Dldr.Agent.JKH
* [[Darkness]] / [[Optima]], [[Votwup]]
* Dlena
* [[Decebal]]
* Donbot / Bachsoy, Buzus
* [[Destory]]
* Dorifel / Quervar, XDocCrypt
* [[Devdar]]
* Dorkbot / Nrgbot, Ngrbot
* [[Dexter]]
* Duqu
* [[Dharma]]
* [[Dirt Jumper]]
* [[Disker]]
* [[DistTrack]]
* [[Dldr.Agent.JKH]]
* [[Dlena]]
* [[Donbot]] / [[Bachsoy]], [[Buzus]]
* [[Dorifel]] / [[Quervar]], [[XDocCrypt]]
* [[Dorkbot]] / [[Nrgbot]], [[Ngrbot]]
* [[Duqu]]
* [[Dyre]] / [[Dyreza]], [[Dyzap]], [[Dyranges]]
 
=== E ===
=== E ===
* Eggdrop
* [[Eagle]]
* Encriyoko
* [[Eggdrop]]
* Epubb
* [[Encriyoko]]
* Esthost
* [[Epubb]]
* Etumbot
* [[Ertfor]]
* Expiro / Xpiro
* [[Esthost]]
* [[Etumbot]]
* [[Expiro]] / [[Xpiro]]
 
=== F ===
=== F ===
* Fakavalert
* [[Fakavalert]]
* FakeM
* [[FakeM]]
* Feedorbot
* [[Feederbot]]
* Festi
* [[Festi]]
* Fivetoone / DMSpammer
* [[Fivetoone]] / [[DMSpammer]]
* Flame / Flamer, sKyWIper
* [[Flagui]]
* Flashback / Flashfake
* [[Flame]] / [[Flamer]], [[sKyWIper]]
* Flimrans
* [[Flashback]] / [[Flashfake]]
* Fuflo
* [[Flimrans]]
* [[Foag]]
* [[Forbot]]
* [[FrameworkPOS]]
* [[Frutas]]
* [[Fuflo]]
 
=== G ===
=== G ===
* Galock
* [[Galock]]
* Gameover / P2P ZeuS
* [[GamaPoS]]
* Gammima
* [[Gameover]] / [[P2P ZeuS]]
* Gapz
* [[Gammima]]
* Gauss
* [[Gapz]]
* Gbot
* [[Gauss]]
* Gema
* [[Gbot]]
* Generetic
* [[Gema]]
* Gheg / Tofsee, Mondera
* [[Gendarmerie]]
* Gh0st RAT
* [[Generetic]]
* Goldenbaks
* [[Getmypass]]
* Gozi / Ursnif
* [[Gheg]] / [[Tofsee]], [[Mondera]]
* Grum / Tedroo
* [[Gimemo]]
* Gumblar
* [[Gh0st RAT]]
* [[GlassRAT]]
* [[Goldenbaks]]
* [[GootKit]]
* [[Goscri]]
* [[Gozi]] / [[Ursnif]], [[Prinimalka]], [[Vawtrak]]
* [[Gpcode]]
* [[GranCrab]] / [[GandCrab]]
* [[Grum]] / [[Tedroo]]
* [[Gumblar]]
 
=== H ===
=== H ===
* [[Hamweq]]
* [[Hamweq]]
Line 110: Line 176:
* [[Hermes]]
* [[Hermes]]
* [[HerpesNet]]
* [[HerpesNet]]
* [[Hesperbot]]
* [[Hikit]]
* [[Hikit]]
* [[Hiloti]]
* [[Hiloti]]
* [[Hodprot]]
* [[Hodprot]]
* [[H-Worm]]


=== I ===
=== I ===
Line 124: Line 192:


=== J ===
=== J ===
* [[JackPOS]]
* [[Jagfu]]
* [[Jagfu]]
* [[Jenxcus]]
* [[Jenxcus]]
* [[Jigsaw]]


=== K ===
=== K ===
Line 132: Line 202:
* [[Karn!v0r3x]]
* [[Karn!v0r3x]]
* [[Kelihos]]
* [[Kelihos]]
* [[KINS]]
* [[Kjw0rm]]
* [[Kneber]]
* [[Kneber]]
* [[Koler]]
* [[Kovter]]
* [[Kovter]]
* [[Koobface]]
* [[Koobface]]
Line 138: Line 211:


=== L ===
=== L ===
* Leave
* [[Leave]]
* Leouncia
* [[Leouncia]]
* Lethic
* [[Lethic]]
* Lyposit
* [[LockerGoga]]
* [[LockScreen.CI]]
* [[Locky]]
* [[LogPOS]]
* [[Lukitus]]
* [[LusyPOS]]
* [[Lyposit]]
 
=== M ===
=== M ===
* Maazben
* [[Maazben]]
* Madi
* [[Madi]]
* Makadocs
* [[Makadocs]]
* Mariachi
* [[Malex]]
* Mariposa
* [[MalumPoS]]
* MDK
* [[Mariachi]]
* Mebromi
* [[Mariposa]]
* Medfos / Midhos
* [[MDK]]
* Mega-D / Ozdok
* [[Mebromi]]
* Mehika / TwitterBot, Hittler
* [[Medfos]] / [[Midhos]]
* Metulji / EvilFistSquad
* [[Mega-D]] / [[Ozdok]]
* MiniDuke
* [[Mehika]] / [[TwitterBot]], [[Hittler]]
* Mocbot / Wargbot, Graweg
* [[Metulji]] / [[EvilFistSquad]]
* Monkif / ExeDot, DIKhora
* [[MiniDuke]]
* Multi-Locker
* [[Mirage]]
* Murofet / Licat
* [[Mirai]]
* Mytob
* [[Mlano]]
* [[Mocbot]] / [[Wargbot]], [[Graweg]]
* [[ModPOS]]
* [[Monkif]] / [[ExeDot]], [[DIKhora]]
* [[MP-DDoser]]
* [[Multi-Locker]]
* [[Murofet]] / [[Licat]]
* [[Mytob]]
 
=== N ===
=== N ===
* Netsky
* [[NanoCore]]
* Ngrbot
* [[Nemucod]]
* Nitol
* [[Netsky]]
* Nitro
* [[Nertra]]
* Nucrypt / Loosky, Locksky
* [[NetTraveler]]
* Nugache
* [[NewPOSThings]]
* Nymaim
* [[Ngrbot]]
* [[NitlovePOS]]
* [[Nitol]]
* [[Nitro]]
* [[NjRAT]] / Variant: [[H-Worm]]
* [[Njw0rm]]
* [[Nucrypt]] / [[Loosky]], [[Locksky]]
* [[Nugache]]
* [[Nymaim]]
 
=== O ===
=== O ===
* Obad
* [[Obad]]
* OneWordSub
* [[OneWordSub]]
* [[OphionLocker]]
 
=== P ===
=== P ===
* Patcher / Multibanker, Bankpatcher
* [[Pandora]]
* Pexby
* [[Patcher]] / [[Multibanker]], [[Bankpatcher]]
* Phatbot
* [[Petya]]
* PiceBOT
* [[Pexby]]
* PickPocket
* [[Phatbot]]
* Pirpi
* [[PiceBOT]]
* PlugX / Korplug, Gulpix
* [[PickPocket]]
* Poebot / W32/Linkbot
* [[Pinkslipbot]]
* Poison Ivy
* [[Pirpi]]
* PokerAgent
* [[Pitou]]
* Polybot
* [[PlugX]] / [[Korplug]], [[Gulpix]]
* Ponmocup / Pirminay, Swisyn, Vundo
* [[Pobelka]]
* Pony / Fareit
* [[Poebot]] / [[W32/Linkbot]]
* Poof
* [[Poison Ivy]]
* Poseidon
* [[PokerAgent]]
* Power Bot
* [[Polybot]]
* Pramro
* [[Ponmocup]] / [[Pirminay]], [[Swisyn]], [[Vundo]]
* PrettyPark
* [[Pony]] / [[Fareit]]
* Prinimalka
* [[Poof]]
* Psybot
* [[Poseidon]]
* PTA
* [[Power Bot]]
* Pushdo
* [[Pramro]]
* [[PrettyPark]]
* [[Prinimalka]]
* [[Psybot]]
* [[PTA]]
* [[Punkey]]
* [[Pushdo]]
 
=== Q ===
* [[Qadars]]
 
=== R ===
=== R ===
* Ramnit
* [[Ramnit]]
* Ranbyus
* [[Ranbyus]]
* Rannoh / Matsnu
* [[Ranky]]
* Reposin
* [[Rannoh]] / [[Matsnu]]
* Reveton
* [[Ransom.EY]]
* Revoyem
* [[Ransom.HY]]
* Rocra
* [[Ransom.IF]]
* Rustock / RKRustok, Costrat, Meredrop
* [[Ransom.II]]
* [[Ransom.JU]]
* [[Raxm]]
* [[Rdasrv]]
* [[Regin]]
* [[Reposin]]
* [[Revenge RAT]]
* [[Reveton]]
* [[Revoyem]]
* [[Rocra]]
* [[Rustock]] / [[RKRustok]], [[Costrat]], [[Meredrop]]
 
=== S ===
=== S ===
* Sasser
* [[Sage]]
* Sdbot
* [[Sality]]
* Shylock / Caphaw
* [[SamSam]]
* Silence Locker
* [[Sasser]]
* Silon
* [[ScarePakage]]
* Simplocker
* [[Sdbot]]
* Sinit
* [[Shifu]]
* Skunkx
* [[Shylock]] / [[Caphaw]]
* Slapper
* [[Silence Locker]]
* Smoke Bot
* [[Silent Winlocker]]
* SMSZombie
* [[Silon]]
* Snap
* [[Simda]]
* Sobig / Palyh
* [[Simplocker]]
* Solar / Napolar
* [[Sinit]]
* Spachanel
* [[Sinowal]] / [[Mebroot]], [[Rootkit MBR]], [[Bootkit (botnet)]]
* SpamSoldier
* [[Sir DoOom]]
* SpamThru / Spam-DComServ, Covesmer, Xmiler
* [[Skunkx]]
* Spybot / SDBot, Rbot, URBot, URXBot
* [[Slapper]]
* SpyEye
* [[Smoke Bot]]
* Srizbi / Cbeplay, Exchanger
* [[SMSZombie]]
* Storm / Nuwar, Peacomm, Zhelatin, Tibs
* [[Snap]]
* Stration / Warezov, Opnis
* [[Sobig]] / [[Palyh]]
* Supern0va
* [[Solar]] / [[Napolar]]
* Swizzor
* [[Sopelka]]
* Sykipot
* [[Soraya]]
* [[Spachanel]]
* [[SpamSoldier]]
* [[SpamThru]] / [[Spam-DComServ]], [[Covesmer]], [[Xmiler]]
* [[Spark]]
* [[SpyEye]]
* [[SpyBot]] / [[SDBot]], [[Rbot]], [[UrBot]], [[UrXBot]]
* [[Srizbi]] / [[Cbeplay]], [[Exchanger]]
* [[Storm]] / [[Nuwar]], [[Peacomm]], [[Zhelatin]], [[Tibs]]
* [[Stration]] / [[Warezov]], [[Opnis]]
* [[Studma]]
* [[Supern0va]]
* [[Swizzor]]
* [[Sykipot]]
* [[SynoLocker]]
 
=== T ===
=== T ===
* Tatanarg
* [[TDL-4]] / [[TDL-3]], [[TDSS]], [[DGAv14]]
* Taidoor
* [[Taidoor]]
* TDL-4 / TDL-3, TDSS, DGAv14
* [[Tatanarg]]
* Tequila
* [[Tatanga]]
* Thor
* [[Tequila]]
* TidServ
* [[TeslaCrypt]]
* Tigger / Syzor
* [[The Mask]]
* Tilon
* [[Thor]]
* Tinba / Gataka
* [[TidServ]]
* Torpig
* [[Tigger]] / [[Syzor]]
* Travnet
* [[Tilon]]
* Twitter based botnet
* [[Tinba]] / [[Gataka]]
* [[TinyNuke]]
* [[Tobfy]]
* [[Tobfy.N]]
* [[Torpig]]
* [[TorrentLocker]]
* [[Travnet]]
* [[TreasureHunt]]
* [[Turla]] / [[Uroburos]], [[Snake]]
* [[Twitter based botnet]]
 
=== U ===
=== U ===
* UBot
* [[UBot]]
* Umbra
* [[ULocker]]
* Upas
* [[Umbra]]
* Urausy
* [[Undefined-04]]
* URLZone / Downloader-BQZ.a
* [[Undefined-10]]
* [[Upas]]
* [[Urausy]]
* [[Uremtoo]]
* [[URLZone]] / [[Downloader-BQZ.a]]
 
=== V ===
=== V ===
* Vawtrak
* [[VertexNet]]
* VertexNet
* [[Vicas]]
* Vicas
* [[VinSelf]]
* VinSelf
* [[ViperRAT]]
* Virut
* [[VirLock]]
* VOlk
* [[Virut]]
* [[VOlk]]
 
=== W ===
=== W ===
* Waledac / Waled, SLM, Kelihos, Hilux, Hlux, Nap
* [[Waledac]] / [[Waled]], [[SLM]], [[Kelihos]], [[Hilux]], [[Hlux]], [[Nap]]
* Warbot
* [[Wannacry]]
* Wigon
* [[Warezov]]
* Wiper
* [[Warbot]]
* Wirenet
* [[Weelsof]]
* [[Wigon]]
* [[Wiper]]
* [[Wirenet]]
* [[Wopla]] / [[Pokier]], Slogger
* [[Wopla]] / [[Pokier]], Slogger
=== X ===
=== X ===
* Xarvester / Rlsloup, Rucrzy
* [[Xarvester]] / [[Rlsloup]], [[Rucrzy]]
* [[Xpaj]]
* [[Xtreme RAT]]
 
=== Y ===
=== Y ===
* YoYo
* [[YoYo]]
* Ysreef
* [[Ysreef]]
 
=== Z ===
=== Z ===
* Zapchast
* [[Zapchast]]
* Zegost
* [[Zegost]]
* Zemra
* [[Zemra]]
* ZeroAccess
* [[ZeroAccess]]
* ZeroLocker
* [[ZeroLocker]]
* ZeuS / Zunker
* [[ZeuS]] / [[Zunker]]
* ZeuS - P2P+DGA
* [[ZeuS - P2P+DGA]]
{{Div col end}}
 
==Campaigns==
{{Div col|3}}
=== D ===
* [[Dragonfly]] / [[Energetic Bear]]
{{Div col end}}
{{Div col end}}
G
 
==Groups==
==Groups==
* Banking
* [[Banking]]
* DDoSing
** [[Point-of-sale]]
* Fake antivirus
* [[Click frauding]]
* Police lock
* [[DDoSing]]
* Ransomware (other)
* [[Ransomware]]
* RAT / Remote administration trojan
** [[Cryptolocker]]
* Spying
** [[Fake antivirus]]
* Spamming
** [[Police lock]]
* Stealing
** [[Ransomware (other)]]
* [[RAT]] / [[Remote administration trojan]]
* [[Spying]]
** [[Destructive]]
* [[Spamming]]
* [[Stealing]]
 
==Criminal services==
==Criminal services==
* Bulletproof hosting
* Bulletproof hosting
Line 293: Line 465:
* Exchange
* Exchange
* Mules
* Mules
* Pay-per-install
* Security software check
* Security software check
* Traffic
* Traffic
* VPN
* VPN
== Panels ==
=== Z ===
* [[Zemra (panel)]]
== Exploit kits/packs ==
{{Div col|3}}
=== A ===
* [[Alpha Pack]]
* [[Angler]]
* [[Archie]]
* [[Assoc AID]]
* [[Astrum]]
=== B ===
* [[Best]]
* [[Black Dragon]]
* [[Blackhole]]
* [[Bleeding Life]]
=== C ===
* [[ChePack]]
* [[CkVip]]
* [[Cool Exploit Kit]]
* [[Cool Pack]]
* [[CritXPack]] / [[Vintage Pack]]
=== D ===
* [[Dotkachef]]
=== E ===
* [[EgyPack]]
* [[Eleonore]]
=== F ===
* [[Fiesta]]
* [[Flash (Exploit kit)]]
* [[Flimkit]]
* [[Fragus]]
=== G ===
* [[Glazunov]]
* [[Gong Da]] / [[Gongdad]]
* [[GrandSoft]]
=== H ===
* [[Hanjuan]]
* [[Hierarchy]]
=== I ===
* [[Impact]]
* [[Incognito]]
* [[Infinity (Exploit kit)]]
=== K ===
* [[KaiXin]] / [[Gondad]]
* [[Kore]]
=== L ===
* [[LightsOut]]
=== M ===
* [[Magnitude]]
* [[MPack]]
* [[Mushroom]]
=== N ===
* [[NeoSploit]]
* [[Neutrino]]
* [[Nice]]
* [[Niteris]]
* [[Nuclear Pack]]
* [[Null Hole]]
=== P ===
* [[Phoenix]]
* [[Private EK]]
* [[ProPack]]
=== R ===
* [[Red Dot]]
* [[RedKit]] / [[Goon]], [[Puerto]]
* [[RIG]]
=== S ===
* [[Sakura]]
* [[Sava]]
* [[Serenity]] / [[Serenity Pack]]
* [[Siberia]] / [[Siberia Private]]
* [[Sibhost]] / [[Kore]], [[Urausy EK]], [[BestAV EK]]
* [[SofosFO]]
* [[Spartan]]
* [[SPL Pack]]
* [[Styx]] / [[Kein]]
* [[Sundown]]
* [[Sweet Orange]]
=== T ===
* [[T-Pack]]
* [[Techno XPack]]
=== V ===
* [[Vintage Pack]]
=== X ===
* [[x2o]] / [[Redkit light]]
=== Y ===
* [[Yang Pack]]
=== Z ===
* [[Zhi Zhu]]
{{Div col end}}
== Malware and botnet related Services ==
=== C ===
* [[Check4Me]]
=== I ===
* [[Iframeshop]]
=== P ===
* [[Prepaidex]]
=== S ===
* [[Scan4you]]
* [[SollHost]]

Revision as of 15:10, 12 May 2019


Thank you for your patience, the botnets.fr Wiki is being rebuilt (the previous wiki is still available at https://www.botnets.fr/wiki.old)

Under construction.jpg

Introduction

This semantic Wiki is developed since November 2011 in the context of a PhD work on the fight against botnets conducted at the LIP 6 laboratory in Paris (Complex networks team). The PhD was successfully defended in November 2015 in Paris, France. But work continues...

Botnets

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

Campaigns

Groups

Criminal services

  • Bulletproof hosting
  • DDoSing / Stress test
  • Encryption
  • Exchange
  • Mules
  • Pay-per-install
  • Security software check
  • Traffic
  • VPN

Panels

Z

Exploit kits/packs

Malware and botnet related Services

C

I

P

S