[nsp-sec] ACK: W32.silon drones
Rodolfo Baader
rbaader at arcert.gov.ar
Tue Nov 3 13:40:28 EST 2009
Hi!
ACK for:
27747 | 190.55.67.231 | AR | 4432 2009-11-03 08:44:17 LULIxXP_8010CBFB |
Telecentro S.A.
Regards,
R.
Dirk Stander wrote:
> ----------- nsp-security Confidential --------
>
>
>
> ------------------------------------------------------------------------
>
> Hi,
>
> please find attached a list of ~900 drones infected with a banking
> trojan dubbed as silon (http://www.trusteer.com/webform/w32silon-malware-analysis)
>
> The data is from a DNS-based sinkhole (ow2erdf.com, 217.160.7.166:80)
> and the format of the list is:
> ... | <source port> <time last seen (GMT)> <bot id> | ...
>
> kind regards, Dirk Stander (1&1) :.
>
>
> ------------------------------------------------------------------------
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
More information about the nsp-security
mailing list