Poison Ivy

From Botnets.fr
Revision as of 00:03, 5 February 2015 by Eric.freyssinet (talk | contribs) (1 revision imported)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

Poison Ivy
Alias
Group RAT
Parent
Sibling
Family
Relations Variants:

Sibling of:
Parent of:
Distribution of:
Campaigns: APT1

Target Microsoft Windows
Origin
Distribution vector
UserAgent Unknown
CCProtocol TCP/3360 (Port)
Activity Unknown / Unknown
Status Unknown
Language
Programming language
Operation/Working group

Introduction

Features

Associated images

Checksums / AV databases

Publications

 AuthorEditorYear
APT1: technical backstageMalware.lu
Paul Rascagnères		Malware.lu2013
Department of Labor strategic web compromiseMatt DahlCrowdstrike2013
Poison Ivy 2.3.0 DocumentationShapelessPoisonIvy2007
Poison Ivy: assessing damage and extracting intelligenceFireEyeFireEye2014
PoisonIvy adapts to communicate through authentication proxiesShusei TomonagaJPCERT-CC2015
Retrieved from "https://www.botnets.fr/index.php?title=Poison_Ivy&oldid=1491"