July 30, 2014, 1:20 pm
in Anti-Malware Research , by Razvan Stoica

Further sinkholing by the Bitdefender research team saw the Pushdo bots calling home from a surprising 183.909 unique IP addresses, spread all over the world.

1 Comment
July 18, 2014, 12:13 pm
in Anti-Malware Research , by Razvan Stoica

According to Bitdefender researchers who are monitoring the sinkholed Pushdo domains, the bots have made no less than 499.389 requests, from 45.053 unique IP addresses, in an interval of 48 hours, giving a more precise sense of the total size … Continue reading

Comments Off on Pushdo Botnet Tops 40k
July 16, 2014, 2:59 pm
in Anti-Malware Research , by Razvan Stoica

The sinkholing of Pushdo C&C domains continues and it has become apparent that the botnet is of quite sizeable proportions and pretty well spread globally – although some interesting prevalence patterns can be discerned in the new map provided by … Continue reading

July 15, 2014, 2:51 pm
in Anti-Malware Research , by Razvan Stoica

Bitdefender researchers Alexandru Maximciuc, Cristina Vatamanu, Doina Cosovan, Paul Boț and Răzvan Benchea report that a new PushDo variant emerged yesterday, 14th July 2014. Previous PushDo variants have been  analyzed by Bitdefender researchers previously and the results were presented at … Continue reading

December 4, 2013, 12:13 pm
in Uncategorized , by Razvan Stoica

This year, the PushDO malware made a powerful comeback. Our team have been analyzing and monitoring this malware through a sinkhole system. DGA The common way for a bot to contact its Command & Control server is to use a … Continue reading

1 Comment