Darkshell DDOS Botnet Evolves With Variants | McAfee Blog
Tags
| attack-pattern: | Data Botnet - T1583.005 Botnet - T1584.005 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Denial Of Service |
Common Information
| Type | Value |
|---|---|
| UUID | 4af190d9-3c56-4e70-ba48-cc6f4b525c9a |
| Fingerprint | a11508102433b70f |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 5, 2012, 5 p.m. |
| Added to db | Sept. 26, 2022, 9:30 a.m. |
| Last updated | Sept. 2, 2024, 4:22 p.m. |
| Headline | Darkshell DDOS Botnet Evolves With Variants |
| Title | Darkshell DDOS Botnet Evolves With Variants | McAfee Blog |
| Detected Hints/Tags/Attributes | 31/1/18 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | hh6002.sxzyong.com |
|
| Details | Domain | 1 | 9527idc.vicp.net |
|
| Details | Domain | 1 | hwtt.3322.org |
|
| Details | Domain | 1 | 805.sxzyong.com |
|
| Details | Domain | 1 | 801.sxzyong.com |
|
| Details | Domain | 1 | sdqd666.3322.org |
|
| Details | Domain | 1 | 802.sxzyong.com |
|
| Details | Domain | 1 | 806.sxzyong.com |
|
| Details | Domain | 1 | www.darkshellnew.com |
|
| Details | File | 1 | c:\windows\system32\winhe803.exe |
|
| Details | md5 | 1 | aff00fac695971c1aea37ce51f4d6228 |
|
| Details | md5 | 1 | beec4de4740da867ed44c666d283c4f2 |
|
| Details | md5 | 1 | b3e28fc05514abbaea1e12b676bef2a8 |
|
| Details | md5 | 1 | bc47ff49ba8ea1bc0c028edd7262c0ac |
|
| Details | md5 | 1 | bcb210972648719e7d53223fbb7210ab |
|
| Details | md5 | 1 | bf56f97511c4c4bc23d92c17d5e976fe |
|
| Details | md5 | 1 | c008c851bef86764943f7a4a2a16d7c6 |
|
| Details | md5 | 1 | c74890f5a5400e70ff40da0493a933d7 |