Sinowal: the evolution of MBR rootkit continues
Jump to navigation
Jump to search
(Publication) Google search: [1]
| Sinowal: the evolution of MBR rootkit continues | |
|---|---|
| |
| Botnet | |
| Malware | Sinowal |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2011 / |
| Editor/Conference | PrevX Labs |
| Link | http://www.aall86.altervista.org/files/Sinowal new Analysis.pdf www.aall86.altervista.org (www.aall86.altervista.org Archive copy) |
| Author | Andrea Allievi |
| Type | |
Abstract
“ In these last weeks of year here at PrevX labs, we found an interesting malware sample called Simowal.knf. This is the last evolution of famous MBR rootkit that begun its spreading in the year 2008. Rootkit in this incarnation has evolved a lot. We start speaking about its way of starting up...
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2011BFR799,
editor = {PrevX Labs},
author = {Andrea Allievi},
title = {Sinowal: the evolution of MBR rootkit continues},
date = {19},
month = Apr,
year = {2011},
howpublished = {\url{http://www.aall86.altervista.org/files/Sinowal_new_Analysis.pdf www.aall86.altervista.org}},
}