Pushdo botnet gets DGA update, over 6,000 machines host new variant

From Botnets.fr
Jump to navigation Jump to search

(Publication) Google search: [1]

Pushdo botnet gets DGA update, over 6,000 machines host new variant
Botnet Pushdo, Cutwail
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2014 / 2014-07-16
Editor/Conference Haymarket Media, Inc
Link http://www.scmagazine.com/pushdo-botnet-gets-dga-update-over-6000-machines-host-new-variant/article/361253/ (Archive copy)
Author Danielle Walker
Type Press article

Abstract

The Pushdo botnet, known for delivering a bevy of malware through its spamming module Cutwail, is being updated to leverage a new domain-generation algorithm (DGA).

According to researchers at Bitdefender Labs, over 6,000 infected machines in the 1.5 million-strong botnet now host the new malware variant. On Monday, the Bitdefender team discovered the modified version of Pushdo, and by Tuesday, thousands of unique IP addresses worldwide were attempting to contact the malware's control hub – a count that only includes the most affected countries.

Bibtex

 @misc{Walker2014BFR1390,
   editor = {Haymarket Media, Inc},
   author = {Danielle Walker},
   title = {Pushdo botnet gets DGA update, over 6,000 machines host new variant},
   date = {16},
   month = Jul,
   year = {2014},
   howpublished = {\url{http://www.scmagazine.com/pushdo-botnet-gets-dga-update-over-6000-machines-host-new-variant/article/361253/}},
 }