Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-11-20360 netlabHui Wang, Alex Turing, CNCERT, Qihoo 360
@online{wang:20201120:moobot:bee7c03, author = {Hui Wang and Alex Turing and CNCERT and Qihoo 360}, title = {{MooBot on the run using another 0 day targeting UNIX CCTV DVR}}, date = {2020-11-20}, organization = {360 netlab}, url = {https://blog.netlab.360.com/moobot-0day-unixcctv-dvr-en/}, language = {English}, urldate = {2020-11-23} } MooBot on the run using another 0 day targeting UNIX CCTV DVR
MooBot
2020-11-20360 netlabJiaYu
@online{jiayu:20201120:blackrota:ee43da1, author = {JiaYu}, title = {{Blackrota, a highly obfuscated backdoor developed by Go}}, date = {2020-11-20}, organization = {360 netlab}, url = {https://blog.netlab.360.com/blackrota-an-obfuscated-backdoor-written-in-go/}, language = {Chinese}, urldate = {2020-11-23} } Blackrota, a highly obfuscated backdoor developed by Go
Cobalt Strike
2020-11-13NetlabAlex Turing, Hui Wang
@online{turing:20201113:quick:fd9e5d2, author = {Alex Turing and Hui Wang}, title = {{Quick update on the Linux.Ngioweb botnet, now it is going after IoT devices}}, date = {2020-11-13}, organization = {Netlab}, url = {https://blog.netlab.360.com/linux-ngioweb-v2-going-after-iot-devices-en/}, language = {English}, urldate = {2020-11-18} } Quick update on the Linux.Ngioweb botnet, now it is going after IoT devices
Ngioweb
2020-10-06360 netlabJiaYu
@online{jiayu:20201006:heh:48e69cc, author = {JiaYu}, title = {{HEH, a new IoT P2P Botnet going after weak telnet services}}, date = {2020-10-06}, organization = {360 netlab}, url = {https://blog.netlab.360.com/heh-an-iot-p2p-botnet/}, language = {English}, urldate = {2020-10-07} } HEH, a new IoT P2P Botnet going after weak telnet services
2020-09-30360netlabHui Wang, Alex Turing
@online{wang:20200930:ttint:fb14c9f, author = {Hui Wang and Alex Turing}, title = {{Ttint: 一款通过2个0-day漏洞传播的IoT远控木马}}, date = {2020-09-30}, organization = {360netlab}, url = {https://blog.netlab.360.com/ttint-an-iot-rat-uses-two-0-days-to-spread/}, language = {Chinese}, urldate = {2020-10-04} } Ttint: 一款通过2个0-day漏洞传播的IoT远控木马
2020-09-25360netlabAlex Turing, Hui Wang
@online{turing:20200925:ghost:4b56424, author = {Alex Turing and Hui Wang}, title = {{Ghost in action: the Specter botnet}}, date = {2020-09-25}, organization = {360netlab}, url = {https://blog.netlab.360.com/ghost-in-action-the-specter-botnet/}, language = {English}, urldate = {2020-10-04} } Ghost in action: the Specter botnet
Specter
2020-08-31NetlabYanlong Ma, GenShen Ye, Ye Jin
@online{ma:20200831:in:4af10a4, author = {Yanlong Ma and GenShen Ye and Ye Jin}, title = {{In the wild QNAP NAS attacks}}, date = {2020-08-31}, organization = {Netlab}, url = {https://blog.netlab.360.com/in-the-wild-qnap-nas-attacks-en/}, language = {English}, urldate = {2020-09-01} } In the wild QNAP NAS attacks
2020-07-10360 netlabAlex Turing, Hui Wang
@online{turing:20200710:new:2d912a8, author = {Alex Turing and Hui Wang}, title = {{The new Bigviktor Botnet is Targeting DrayTek Vigor Router}}, date = {2020-07-10}, organization = {360 netlab}, url = {https://blog.netlab.360.com/bigviktor-dga-botnet/}, language = {English}, urldate = {2020-07-15} } The new Bigviktor Botnet is Targeting DrayTek Vigor Router
BigViktor
2020-07-09360 netlabAlex Turing, Hui Wang
@online{turing:20200709:update:9e65288, author = {Alex Turing and Hui Wang}, title = {{An Update for a Very Active DDos Botnet: Moobot}}, date = {2020-07-09}, organization = {360 netlab}, url = {https://blog.netlab.360.com/ddos-botnet-moobot-en/}, language = {English}, urldate = {2020-07-15} } An Update for a Very Active DDos Botnet: Moobot
MooBot
2020-07-06360 netlabYa Liu
@online{liu:20200706:gafgyt:9fb2ccc, author = {Ya Liu}, title = {{The Gafgyt variant vbot seen in its 31 campaigns}}, date = {2020-07-06}, organization = {360 netlab}, url = {https://blog.netlab.360.com/the-gafgyt-variant-vbot-and-its-31-campaigns/}, language = {English}, urldate = {2020-07-06} } The Gafgyt variant vbot seen in its 31 campaigns
Bashlite
2020-05-23360 netlabJinye
@online{jinye:20200523:new:20aa28f, author = {Jinye}, title = {{New activity of DoubleGuns Group, control hundreds of thousands of bots via public cloud service}}, date = {2020-05-23}, organization = {360 netlab}, url = {https://blog.netlab.360.com/shuangqiang/}, language = {English}, urldate = {2020-05-26} } New activity of DoubleGuns Group, control hundreds of thousands of bots via public cloud service
2020-04-27360 netlabAlex Turing, Hui Wang
@online{turing:20200427:leethozer:43893b8, author = {Alex Turing and Hui Wang}, title = {{The LeetHozer botnet}}, date = {2020-04-27}, organization = {360 netlab}, url = {https://blog.netlab.360.com/the-leethozer-botnet-en/}, language = {English}, urldate = {2020-05-20} } The LeetHozer botnet
LeetHozer
2020-03-23360 netlabAlex Turing
@online{turing:20200323:icnanker:3d4cac6, author = {Alex Turing}, title = {{Icnanker, a Linux Trojan-Downloader Protected by SHC}}, date = {2020-03-23}, organization = {360 netlab}, url = {https://blog.netlab.360.com/icnanker-trojan-downloader-shc-en/}, language = {English}, urldate = {2020-04-01} } Icnanker, a Linux Trojan-Downloader Protected by SHC
Icnanker
2019-12-23360 netlabAlex Turing, Hui Wang
@online{turing:20191223:mozi:12a14ab, author = {Alex Turing and Hui Wang}, title = {{Mozi, Another Botnet Using DHT}}, date = {2019-12-23}, organization = {360 netlab}, url = {https://blog.netlab.360.com/mozi-another-botnet-using-dht/}, language = {English}, urldate = {2020-01-06} } Mozi, Another Botnet Using DHT
Mozi
2019-12-17NetlabJinye, GenShen Ye
@online{jinye:20191217:lazarus:f97fffd, author = {Jinye and GenShen Ye}, title = {{Lazarus Group uses Dacls RAT to attack Linux platform}}, date = {2019-12-17}, organization = {Netlab}, url = {https://blog.netlab.360.com/dacls-the-dual-platform-rat/}, language = {Chinese}, urldate = {2020-01-07} } Lazarus Group uses Dacls RAT to attack Linux platform
Dacls Log Collector Dacls
2019-11-20360 netlabAlex Turing, GenShen Ye
@online{turing:20191120:awaiting:eefead1, author = {Alex Turing and GenShen Ye}, title = {{The awaiting Roboto Botnet}}, date = {2019-11-20}, organization = {360 netlab}, url = {https://blog.netlab.360.com/the-awaiting-roboto-botnet-en}, language = {English}, urldate = {2020-01-10} } The awaiting Roboto Botnet
Roboto
2019-07-01360 netlabAlex Turing, GenShen Ye
@online{turing:20190701:analysis:72cbe10, author = {Alex Turing and GenShen Ye}, title = {{An Analysis of Godlua Backdoor}}, date = {2019-07-01}, organization = {360 netlab}, url = {https://blog.netlab.360.com/an-analysis-of-godlua-backdoor-en/}, language = {English}, urldate = {2020-01-08} } An Analysis of Godlua Backdoor
Godlua
2018-11-07360 netlabHui Wang, RootKiter
@online{wang:20181107:bcmpupnphunter:1d4af4a, author = {Hui Wang and RootKiter}, title = {{BCMPUPnP_Hunter: A 100k Botnet Turns Home Routers to Email Spammers}}, date = {2018-11-07}, organization = {360 netlab}, url = {https://blog.netlab.360.com/bcmpupnp_hunter-a-100k-botnet-turns-home-routers-to-email-spammers-en/}, language = {English}, urldate = {2020-01-06} } BCMPUPnP_Hunter: A 100k Botnet Turns Home Routers to Email Spammers
BCMPUPnP_Hunter
2018-07-18Twitter (@360Netlab)360 Netlab
@online{netlab:20180718:botnet:f218bd8, author = {360 Netlab}, title = {{Tweet on Botnet}}, date = {2018-07-18}, organization = {Twitter (@360Netlab)}, url = {https://twitter.com/360Netlab/status/1019759516789821441}, language = {English}, urldate = {2020-01-13} } Tweet on Botnet
Owari
2018-07-06360 netlabRootKiter, yegenshen
@online{rootkiter:20180706:hns:d96f016, author = {RootKiter and yegenshen}, title = {{HNS Botnet Recent Activities}}, date = {2018-07-06}, organization = {360 netlab}, url = {https://blog.netlab.360.com/hns-botnet-recent-activities-en/}, language = {English}, urldate = {2020-01-08} } HNS Botnet Recent Activities
Hide and Seek