Difference between revisions of "Nymaim"
Jump to navigation
Jump to search
m (1 revision imported) |
m (Text replacement - "=Unknown" to "=") |
||
| Line 11: | Line 11: | ||
|Illustrations={{Illustrations associées}} | |Illustrations={{Illustrations associées}} | ||
|UserAgent= | |UserAgent= | ||
|CCProtocol= | |CCProtocol= | ||
|Target= | |Target= | ||
|Status= | |Status= | ||
|BeginYear=2012-12 | |BeginYear=2012-12 | ||
|EndYear= | |EndYear= | ||
|Group=Police lock | |Group=Police lock | ||
|Vector=Blackhole | |Vector=Blackhole | ||
Latest revision as of 15:44, 8 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
| Nymaim | |
|---|---|
| Alias | |
| Group | Police lock |
| Parent | |
| Sibling | |
| Family | |
| Relations | Variants: Sibling of: |
| Target | |
| Origin | |
| Distribution vector | Blackhole |
| UserAgent | |
| CCProtocol | |
| Activity | 2012-12 / |
| Status | |
| Language | |
| Programming language | |
| Operation/Working group | |
Introduction
Does not comply to Proxy settings of the computer.
Server side as a Computer ID aware memory (same design with always be sent to same computer) Has be pushed in Blackhole but is now a task from a Pony pushed by the "q.php" Blackhole (cf Darkleech campaign)
md5
soon
httpget
Features
Associated images
Nymaim AT 2013-04
Nymaim CA 2013-04
Nymaim DE 2013-04
Nymaim ES 2013-04
Nymaim FR 2013-04
Nymaim NL 2013-04
Nymaim UK 2013-04
Nymaim US 2013-04
Checksums / AV databases
Publications
| Author | Editor | Year | |
|---|---|---|---|
| Nymaim - obfuscation chronicles | Jean-Ian Boutin | ESET | 2013 |