Killing the myth of Cisco IOS rootkits: DIK (Da Ios rootKit
Common Information
| Type | Value |
|---|---|
| UUID | 980c96dd-7c45-4e2b-9ed8-860f052f69e7 |
| Fingerprint | 1d1e224b6fabeb8f7395e7e288bfe9615e53ef1c42d320a1d58283452515a7e9 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | June 5, 2008, 3:35 p.m. |
| Added to db | March 10, 2024, 12:29 a.m. |
| Last updated | Aug. 31, 2024, 3:09 a.m. |
| Headline | Killing the myth of Cisco IOS rootkits: DIK (Da Ios rootKit |
| Title | Killing the myth of Cisco IOS rootkits: DIK (Da Ios rootKit |
| Detected Hints/Tags/Attributes | 93/1/39 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | www.activestate.com |
|
| Details | Domain | 1 | wiki.python.org |
|
| Details | Domain | 16 | www.hex-rays.com |
|
| Details | Domain | 1 | d-dome.net |
|
| Details | Domain | 5 | www.linuxsecurity.com |
|
| Details | Domain | 19 | www.ruxcon.org.au |
|
| Details | Domain | 10 | gcc.gnu.org |
|
| Details | Domain | 622 | en.wikipedia.org |
|
| Details | Domain | 35 | www.gnu.org |
|
| Details | Domain | 7 | sourceware.org |
|
| Details | Domain | 2 | cir.recurity-labs.com |
|
| Details | Domain | 2 | labs.com |
|
| Details | File | 1 | 123-22.bin |
|
| Details | File | 1 | c2691-i-.bin |
|
| Details | File | 16 | self.dat |
|
| Details | File | 13 | '.dat |
|
| Details | File | 1 | 'c2691-i-.bin |
|
| Details | File | 1 | 'rootkit_content.tmp |
|
| Details | File | 1 | features.pl |
|
| Details | File | 1 | wiki.py |
|
| Details | File | 816 | index.html |
|
| Details | File | 1 | 11-daniel_hodson.ppt |
|
| Details | File | 1 | binutils.html |
|
| Details | File | 1 | recuritylabs_developments_in_ios_forensics.pdf |
|
| Details | IPv4 | 1 | 172.23.1.12 |
|
| Details | Url | 1 | ftp://172.23.1.12/c2691-i-mz.123-22.bin |
|
| Details | Url | 1 | http://www.activestate.com/products/activepython/features.plex |
|
| Details | Url | 1 | http://wiki.python.org/moin/beginnersguide |
|
| Details | Url | 1 | http://www.hex-rays.com/idapro |
|
| Details | Url | 1 | http://d-dome.net/idapython |
|
| Details | Url | 1 | http://www.linuxsecurity.com/resource_files/documentation/virus- |
|
| Details | Url | 1 | http://www.ruxcon.org.au/files/2004/11-daniel_hodson.ppt |
|
| Details | Url | 1 | http://gcc.gnu.org |
|
| Details | Url | 1 | http://en.wikipedia.org/wiki/cross_compiler |
|
| Details | Url | 1 | http://www.gnu.org/software/binutils/binutils.html |
|
| Details | Url | 1 | http://en.wikipedia.org/wiki/objdump |
|
| Details | Url | 1 | http://sourceware.org/gdb |
|
| Details | Url | 2 | http://cir.recurity-labs.com |
|
| Details | Url | 1 | http://www.recurity |