Difference between revisions of "Wirenet"
Jump to navigation
Jump to search
| Line 4: | Line 4: | ||
* Linux version 9a0e765eecc5433af3dc726206ecc56e | * Linux version 9a0e765eecc5433af3dc726206ecc56e | ||
* Mac version d048f7ae2d244a264e58af67b1a20db0 | * Mac version d048f7ae2d244a264e58af67b1a20db0 | ||
|Target=Linux | |Target=Linux, Mac OS X, | ||
| | |Feature=AES encryption, Password theft, File download, | ||
|Checksum=9a0e765eecc5433af3dc726206ecc56e, d048f7ae2d244a264e58af67b1a20db0, | |Checksum=9a0e765eecc5433af3dc726206ecc56e, d048f7ae2d244a264e58af67b1a20db0, | ||
|Status=Unknown | |Status=Unknown | ||
|BeginYear=2012 | |BeginYear=2012 | ||
|EndYear=Unknown | |EndYear=Unknown | ||
|Group=Stealing, | |||
|Infrastructure=* Chiffrement AES | |Infrastructure=* Chiffrement AES | ||
* Le 22 août 2012, Dr.Web identifie 212.7.208.65 comme serveur de commande. | * Le 22 août 2012, Dr.Web identifie 212.7.208.65 comme serveur de commande. | ||
Revision as of 01:58, 1 August 2015
(Botnet) Link to the old Wiki page : [1] / Google search: [2]
| Wirenet | |
|---|---|
| Alias | |
| Group | Stealing |
| Parent | |
| Sibling | |
| Family | |
| Relations | Variants: Sibling of: |
| Target | Linux, Mac OS X |
| Origin | |
| Distribution vector | |
| UserAgent | |
| CCProtocol | |
| Activity | 2012 / Unknown |
| Status | Unknown |
| Language | |
| Programming language | |
| Operation/Working group | |
Introduction
md5 :
- Linux version 9a0e765eecc5433af3dc726206ecc56e
- Mac version d048f7ae2d244a264e58af67b1a20db0
Features
Associated images
Checksums / AV databases
- 9a0e765eecc5433af3dc726206ecc56e | Virustotal
- d048f7ae2d244a264e58af67b1a20db0 | Virustotal
Publications
| Author | Editor | Year | |
|---|---|---|---|
| Mac BackDoor.Wirenet.1 config extractor | RootBSD Malware.lu | Malware.lu | 2012 |
| The first trojan in history to steal Linux and Mac OS X passwords | Dr. Web | Dr.Web | 2012 |