XOR DDoS (Malware Family)

XOR DDoS

aka: XORDDOS

Linux DDoS C&C Malware

2025-04-17 ⋅ Cisco Talos ⋅ Joey Chen
Unmasking the new XorDDoS controller and infrastructure
XOR DDoS

2022-05-19 ⋅ Microsoft ⋅ Microsoft 365 Defender Research Team
Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices
XOR DDoS

2022-01-13 ⋅ CrowdStrike ⋅ Mihai Maganu
Linux-Targeted Malware Increases by 35% in 2021: XorDDoS, Mirai and Mozi Most Prevalent
Mirai Mozi XOR DDoS

2021-09-20 ⋅ IBM ⋅ IBM SECURITY X-FORCE
2021 IBM SecurityX-Force Cloud Threat Landscape Report
Kaiji Kinsing Tsunami Xanthe XOR DDoS

2021-07-25 ⋅ Max Kersten's Blog ⋅ Max Kersten
Ghidra script to decrypt a string array in XOR DDoS
XOR DDoS

2021-03-10 ⋅ Intezer ⋅ Avigayil Mechtinger, Joakim Kennedy
New Linux Backdoor RedXOR Likely Operated by Chinese Nation-State Actor
RedXOR XOR DDoS

2021-01-27 ⋅ lacework ⋅ Chris Hall
Groundhog Botnet Rapidly Infecting Cloud
XOR DDoS

2020-06-22 ⋅ Trend Micro ⋅ Augusto Remillano II
XORDDoS, Kaiji Botnet Malware Variants Target Exposed Docker Servers
Kaiji XOR DDoS

2020-04-07 ⋅ Blackberry ⋅ Blackberry Research
Decade of the RATS: Cross-Platform APT Espionage Attacks Targeting Linux, Windows and Android
Penquin Turla XOR DDoS ZXShell

2018-11-29 ⋅ NSFOCUS ⋅ haoming
Analysis Report of the Xorddos Malware Family
XOR DDoS

2016-03-18 ⋅ Wikipedia ⋅ Various
Xor DDoS
XOR DDoS

2015-12-03 ⋅ 360 Internet Security Center ⋅ Ya Liu
Automatically Classifying Unknown Bots by The REGISTER Messages
MrBlack XOR DDoS DarkShell

2015-10-01 ⋅ Check Point ⋅ Aliaksandr Trafimchuk, Stanislav Skuratovich
Digging for Groundhogs: Holes in your Linux server
XOR DDoS

2015-09-25 ⋅ Blaze's Security Blog ⋅ BartBlaze
Notes on Linux/Xor.DDoS
XOR DDoS

2015-09-01 ⋅ Virus Bulletin ⋅ Jaromír Hořejší, Peter Kálnai
DDOS TROJAN: A MALICIOUS CONCEPT THAT CONQUERED THE ELF FORMAT
Bashlite MrBlack XOR DDoS BillGates

2015-02-05 ⋅ FireEye ⋅ Derek Gooley, Michael Lin
Anatomy of a Brute Force Campaign: The Story of Hee Thai Limited
XOR DDoS

2015-01-06 ⋅ Avast ⋅ Peter Kálnai
Linux DDoS Trojan hiding itself with an embedded rootkit
XOR DDoS

2014-09-29 ⋅ MalwareMustDie ⋅ unixfreaxjp
MMD-0028-2014 - Linux/XOR.DDoS: Fuzzy reversing a new China ELF
XOR DDoS

There is no Yara-Signature yet.