Ghost Turns Zombie: Exploring the Life Cycle of Web-based Malware.
LEET'08: Proceedings of the 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats(2008)
摘要
While the web provides information and services that enrich our lives in many ways, it has also become the primary vehicle for delivering malware. Once infected with web-based malware, an unsuspecting user's machine is converted into a productive member of the Internet underground. In this work, we explore the life cycle of web-based malware by employing light-weight responders to capture the network profile of infected machines. Our results indicate that web-based malware provides a cornerstone for large scale electronic fraud. It is used to exfiltrate address books of compromised machines creating databases of hundred millions of email addresses, to form spamming botnets responsible for a significant fraction of spam currently seen on the Internet, and also to steal login credentials that can be directly monetized or leveraged to turn more web servers into malware delivery vectors. We support our findings by providing a broad overview of the post-infection network behavior of web-based malware, as well as in-depth examinations of the botnets and leaked information we found during the course of our study.
更多查看译文
关键词
spam email,spam email campaign,group bots,multiple bots,botnet membership,new technique,life cycle,web-based malware
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络