SYMBOLCOMMON_NAMEaka. SYNONYMS
elf.bigviktor (Back to overview)

BigViktor


A DDoS bot abusing CVE-2020-8515 to target DrayTek Vigor routers. It uses a wordlist-based DGA to generate its C&C domains.

References
2020-07-10360 netlabAlex Turing, Hui Wang
@online{turing:20200710:new:2d912a8, author = {Alex Turing and Hui Wang}, title = {{The new Bigviktor Botnet is Targeting DrayTek Vigor Router}}, date = {2020-07-10}, organization = {360 netlab}, url = {https://blog.netlab.360.com/bigviktor-dga-botnet/}, language = {English}, urldate = {2020-07-15} } The new Bigviktor Botnet is Targeting DrayTek Vigor Router
BigViktor

There is no Yara-Signature yet.