FireEye Malware Intelligence Lab: Killing the beast…Part 3

by

FireEye Malware Intelligence Lab: Killing the beast…Part 3: “FireEye Malware Intelligence Lab
Threat research, analysis, and mitigation | http://www.fireeye.com
Home
Archives
Subscribe
« Who is Exploiting the Adobe Flash 0-day? – Part 2 | Main | A leap into the uknown – Part 1 »

2009.09.29

Killing the beast…Part 3
In the third part of this series, I’m going to discuss the command and control structure of another famous botnet, Clampi a.k.a ilomo. Clampi is all about data stealing and is famous for its anti-reversing and evasion techniques. The financial damage this information stealer can cause is evident from the fact that it has recently been publicly disclosed of a cyber theft of more than $150,000.  Notorious isn’t it..?

Like the first two parts where I discussed the command and control structure of the Pushdo and Koobface botnets, I’ll start by showing the current geographical distribution of Clampi CnCs, followed by a brief analysis on the chances of shutting down these control servers and hence the complete botnet.

This article is not an i”

(Via .)

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: