[kekieres]

Hi guys,

has someone heard or seen o collected a sample of a malware that is using skype communications as mechanism to communicate with a C&C via IM with the bot master that is using a skype user?

The info I have seen is that the malware runs in the infected machine with a process called "skypes.exe".

Thanks.

[kareldjag/michk]

hi

Shylock/Backdoor:Win32/Capchaw.N might be interesting to you
https://www.csis.dk/en/csis/blog/3811/
http://blog.trendmicro.com/trendlabs-se ... ing-skype/
http://www.symantec.com/connect/blogs/s ... ortunities
http://contagiodump.blogspot.fr/2013/02 ... ample.html

Rgds

[kekieres]

hi

Shylock/Backdoor:Win32/Capchaw.N might be interesting to you
https://www.csis.dk/en/csis/blog/3811/
http://blog.trendmicro.com/trendlabs-se ... ing-skype/
http://www.symantec.com/connect/blogs/s ... ortunities
http://contagiodump.blogspot.fr/2013/02 ... ample.html

Rgds

Thnks for the info, but I believe this is not.
What I'm looking for is a malware not distributed thru Skype but that use Skype IM as C&C communications channel.

[360Tencent]

http://www.iseclab.org/people/embyte/sl ... botnet.pdf ?

or

https://community.rapid7.com/community/ ... rom-reddit?

http://www.kernelmode.info/forum/viewto ... id7#p17093

skynet & skype :roll:

[secObs]

This is the original academic paper about "Take a Deep Breath: a Stealthy, Resilient and Cost-Effective Botnet
Using Skype".

http://www.isg.rhul.ac.uk/sullivan/pubs ... va2010.pdf