DGArchive – A deep dive into domain generating malware Botconf 2015 Thursday | 09:00 – 09:50 Daniel Plohmann 🗣 An observable trend in recent years of malware development is the increased use of Domain Generation Algorithms (DGAs). After having announced the project “DGArchive” in a lightning talk of last year’s Botconf, we would like to […]
DGArchive – A deep dive into domain generating malware Read More »
Whose phone is in your pocket? Botconf 2015 Thursday | 11:00 – 11:30 Mikhail Kuzin 🗣 | Nikita Buchka 🗣 In later April we discovered an Android malware that used for installing backdoor with root priveleges on the devices. This malware is popular in Russia, India, Ukraine, Algeria, but the spread is not limited to this countries.
Whose phone is in your pocket? Read More »
Building a hybrid experimental platform for mobile botnet research Botconf 2015 Thursday | 11:50 – 12:30 Apostolos Malatras 🗣 | Laurent Beslay Mobile botnets are an emerging security threat that aims at exploiting the wide penetration of mobile devices and systems and their vulnerabilities in the same spirit of traditional botnets. Mobile botmasters take advantage of infected
Building a hybrid experimental platform for mobile botnet research Read More »
BoxBotNet Botconf 2015 Thursday | 14:00 – 14:40 Paul Jung 🗣 A hosted box botnet, is a botnet of compromised web servers, usually using vulnerabilities in CMS on low cost hosted servers. Since last year I had followed an indonesian group which operate this kind of botnet and resell access to theses powned servers. The
Malware Instrumentation: Application to Regin Analysis Botconf 2015 Thursday | 14:40 – 15:30 Matthieu Kaczmarek 🗣 The complexity of the Regin malware underlines the importance of reverse engineering in modern incident response. The present study shows that such complexity can be overcome: substantial information about adversary tactics, techniques and procedures is obtained from reverse engineering.
Malware Instrumentation: Application to Regin Analysis Read More »
Practical Experiences of Building an IPFIX Based Open Source Botnet Detector Botconf 2015 Thursday | 16:00 – 16:40 Mark Graham 🗣 | Adrian Winckles 🗣 | Erika Sanchez 🗣 The academic study of flow-based malware detection has primarily focused on NetFlow v5 and v9. In 2013 IPFIX was ratified as the flow export standard. As part of a larger
Practical Experiences of Building an IPFIX Based Open Source Botnet Detector Read More »
Automatically classifying unknown bots by the register messages Botconf 2015 Thursday | 17:00 – 17:30 Ya Liu 🗣 | Bing Song 🗣 The ever-increasing number of malware/botnet samples demands efficient and scalable classification solution for better detection and prevention. C&C protocol based classification has proved to be effective and accurate. However, it’s not trivial to acquire new
Automatically classifying unknown bots by the register messages Read More »
Inside traffic exchange networks Botconf 2015 Friday | 12:30 – 13:00 Jean-Michel Picod 🗣 | Elie Bursztein 🗣 Edit
Inside traffic exchange networks Read More »
Mobile botnet malware collection Botconf 2015 Thursday | 12:30 – 13:00 Apostolos Malatras 🗣 | Laurent Beslay 🗣 Edit
Mobile botnet malware collection Read More »
Successful Botnet Takedowns: The-good-cooperation part Botconf 2015 Wednesday | 11:20 – 11:50 Margarita Louca 🗣 Edit PDF
Successful Botnet Takedowns: The-good-cooperation part Read More »