Difference between revisions of "PickPocket"
Jump to navigation
Jump to search
Line 3: | Line 3: | ||
|Target=Microsoft Windows | |Target=Microsoft Windows | ||
|Vector=P2P networks, | |Vector=P2P networks, | ||
|CCProtocol=HTTP | |CCProtocol=HTTP, IRC, | ||
|Feature=DDoS, Email harvesting, Send spam, | |Feature=DDoS, Email harvesting, Send spam, Open URL, File download, Anti-virus blocking, | ||
|Group=DDoSing, | |Group=DDoSing, Stealing, | ||
|Fonctionnalités=* Formgrabber (IE 8/9 * FF 3/4). | |Fonctionnalités=* Formgrabber (IE 8/9 * FF 3/4). | ||
* RDP (reverse connection). | * RDP (reverse connection). |
Revision as of 20:54, 31 July 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
PickPocket | |
---|---|
Alias | |
Group | DDoSing, Stealing |
Parent | |
Sibling | |
Family | |
Relations | Variants: Sibling of: |
Target | Microsoft Windows |
Origin | |
Distribution vector | P2P networks |
UserAgent | |
CCProtocol | HTTP (Centralized), IRC (Centralized) |
Activity | / |
Status | |
Language | |
Programming language | |
Operation/Working group |
Introduction
PickPocket est un botnet qui a la fonctionalité de DDoS, et se propage via le réseau P2P et via emails / auto-run. Il est capable aussi de stopper quelques antivirus sur Win XP, 2003, 2000, encore il permet de grabber les addresses mails afin de spammer ses propres victimes.
Features
Associated images
Checksums / AV databases
Publications
Author | Editor | Year | |
---|---|---|---|
A peek inside the PickPocket botnet | Dancho Danchev | Webroot | 2012 |