Difference between revisions of "Nymaim"
Jump to navigation
Jump to search
m (1 revision imported) |
m (Text replacement - "=Unknown" to "=") |
||
Line 11: | Line 11: | ||
|Illustrations={{Illustrations associées}} | |Illustrations={{Illustrations associées}} | ||
|UserAgent= | |UserAgent= | ||
|CCProtocol= | |CCProtocol= | ||
|Target= | |Target= | ||
|Status= | |Status= | ||
|BeginYear=2012-12 | |BeginYear=2012-12 | ||
|EndYear= | |EndYear= | ||
|Group=Police lock | |Group=Police lock | ||
|Vector=Blackhole | |Vector=Blackhole |
Latest revision as of 15:44, 8 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
Nymaim | |
---|---|
Alias | |
Group | Police lock |
Parent | |
Sibling | |
Family | |
Relations | Variants: Sibling of: |
Target | |
Origin | |
Distribution vector | Blackhole |
UserAgent | |
CCProtocol | |
Activity | 2012-12 / |
Status | |
Language | |
Programming language | |
Operation/Working group |
Introduction
Does not comply to Proxy settings of the computer.
Server side as a Computer ID aware memory (same design with always be sent to same computer) Has be pushed in Blackhole but is now a task from a Pony pushed by the "q.php" Blackhole (cf Darkleech campaign)
md5
soon
httpget
Features
Associated images
Checksums / AV databases
Publications
Author | Editor | Year | |
---|---|---|---|
Nymaim - obfuscation chronicles | Jean-Ian Boutin | ESET | 2013 |