A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #26320  by unixfreaxjp
 Sun Jul 19, 2015 7:33 am
IptabLes|x botnet CNC in WinPE, served IptabLes|x ELF malware bot clients
For many good details as reference, is written in http://blog.malwaremustdie.org/2015/07/ ... shock.html
Image
Thanks to benkow (credit) to helpo on "xxxx" THIS on CNC while I was deep in analysis.
MD5 (Control.exe) = "315d102f1f6b3c6298f6df31daf03dcd"
No client ELF shared here. Reason: has risk of Infected w/ELF Viruses, grab the md5 of them in analysis above but test risk are your own. rgds #MalwareMustDie
Attachments
7z / infected
(14.9 KiB) Downloaded 47 times