As it turned out this server is also used to distribute some of the updated components: We noticed a new ftp drop site used by the botnet, residing on the IP address 185.26.112.217. They’ve also enhanced the update mechanism with a twist, rolling into production a previously-developed but unused feature to update the C2 servers used by the bootkit components. The botnet’s operators made significant changes to their infrastructure, moving almost all of the domains they use to distribute the malware (including a few new ones) so it is hosted on a single IP address. Mykings have taken a slightly different approach: They added references to our global pandemic into the source code of their malware, itself.īut that’s not the only news about this group, which we’ve covered in previous SophosLabs uncut posts. While most attackers who reference ripped-from-the-headlines topics tend to use those lures in malicious emails or text messages, the operators of the MyKings botnet doesn’t use those types of methods to spread infections - they prefer cracking SQL servers or using the EternalBlue exploit to infect computers. All rights reserved.A lot of cybercriminal groups adopt themes drawn from current events to attract victims, and there’s no bigger global news story right now than the ongoing fight against the novel coronavirus or the disease it causes, COVID-19. We need your help to improve it :)Ĭopyright© 2008-2023 Bandisoft International Inc. This page has not been translated yet or has been machine-translated. File integrity check test to ensure whether an archive is damaged or not.Availability of ZIP & RAR format archive comment.Supported formats: 7Z, ACE, AES, ALZ, ARJ, BH, BIN, BR, BZ, BZ2, CAB, Compound(MSI), DAA(1.0), DEB, EGG, GZ, IMG, ISO, ISZ, LHA, LZ, LZH, LZMA, PMA, RAR, RAR5, SFX(EXE), TAR, TBZ/TBZ2, TGZ, TLZ, TXZ, UDF, WIM, XPI, XZ, Z, ZIP, ZIPX, ZPAQ, PEA, UU, UUE, XXE, ASAR, ZSTD, and NSIS.Multi-volume archive creation of ZIP/7z format.Unicode or MBCS filename for ZIP format.Supports compression of 4GB+ size files.Up to 6 times faster compression using multi-core.ZIP file modification (add/delete/rename).Supported formats: ZIP, 7Z(lzma2), ZIPX(xz), EXE(sfx), TAR, TGZ, LZH(lh7), ISO(joliet), GZ, and XZ.Detect malware in an archive by safe and accurate antimalware scan
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
March 2023
Categories |