BigViktor (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

BigViktor

A DDoS bot abusing CVE-2020-8515 to target DrayTek Vigor routers. It uses a wordlist-based DGA to generate its C&C domains.

2020-07-10 ⋅ 360 netlab ⋅ Alex Turing, Hui Wang
The new Bigviktor Botnet is Targeting DrayTek Vigor Router
BigViktor

There is no Yara-Signature yet.

In which category would you like to suggest a change?

What would you like to do?

New Alias for elf.bigviktorPlease enter a new alias that you think is appropriate for BigViktor. Give a reference for the alias in the box below.

New Name for elf.bigviktorPlease enter your proposal for a new primary family name that you think is more appropriate than elf.bigviktor.

New Common Name for elf.bigviktorPlease enter your proposal for a new primary family name that you think is more appropriate than BigViktor.

What would you like to do?

Add DescriptionThe Family description will be visible on the family details site.

Change DescriptionChange the existing description like you think it would be advisable.

If your designated proposal does not fit in any other category,
feel free to write a free-text in the comment field below.

Please propose all changes regarding references on the Malpedia library page

What would you like to do?

New Actor for elf.bigviktor

Which actor do you think should be removed?

Explanation / ReferenceWhy do you think this change is advisable? Feel free to include references.

Your suggestion will be reviewed before being published.
Thank you for contributing!

URL

Title

Authors

Language

Date Please use YYYY-MM-DD, YYYY-MM, or YYYY.

Organization (optional)

Referenced families (optional)

Comment Add additional information to explain your proposal.

Your suggestion will be reviewed before being published.
Thank you for contributing!