Archive for November, 2009

Malicious Google AppEngine Used as a CnC

November 9, 2009 by Jose Nazario

Over the weekend our zoo found a malware sample that revealed a malicious Google AppEngine application. The app in question is being used to feed URLs to the zombies for them to download. We got the malware via sample sharing, and its original location and infection information is absent. The malware details are below: MD5: [...]


Posted in Backdoors, Botnets, Malware
Read More

Q3 2009 Fast Flux by the Numbers

November 2, 2009 by Jose Nazario

Spent some time lately reading various companies’ Q3 reports on their data to get a lay of the land. I’ve also spent some time thinking about responses to fast flux. The data below is the result of our tracking in ATLAS of fast flux activity. Our monitoring uses spam traps and other means to identify [...]


Posted in ATLAS, Botnets, Interesting Research, Spam
Read More