0
1
Read Time45 Second
Yesterday ,I discovered a new botnet recently started recruiting IoT devices. The botnet uses hosted servers to find and infect new victims.Samples were served from the IPs:
Malware
Samples:
- 6ef2c695014f2333e52959f8f7694435:apep.arm5
- ec2ab226adb580915e971650a5dc9d0f:juno.arm5
- c5bfeeddfc81ed6a8cec93e33d7683b6:apep.mips
- e8795fa418d5e705c34825a72cda62c8:mpsl.b.1
- 158b90f1d244f3bb6927a3136a5d9c54:apep.arm6
- 60d836f51d4941e358dc14aa814ad3de:juno.mips
- dc9f29680764cef87f6d2f9de3394da0:arm7.b
- 33b2229ad39a2612d9de9f3db0034414:juno.mpsl
- f3f81a459c744240087e464bad8c5ea6:juno.ppc
- 976bef456a3818ab215722ace8427fcb:juno.arm7
- ab317a66b9eefda1f2d787830b37dbf0:arm.b.1
- 5d89755d06ac03cedcf31eba3b8bab87:apep.m68k
- 5206d4e04e18b1f96ad00812854ffc77:apep.arm7
- a8ad7d13901b696dc98bc977013976c4:apep.arm
- 5d4f6afc6a679af8f76ce8dad42b147b:juno.arm
- c328d3708faeb9fdda5c8507659cf5ad:apep.mpsl
- b28f84432c4dc1ec95c11e52e05d8da4:juno.sh4
- a04919d207e8a7a14ebcf4ed5f78cb57:arm.b
- f8fb37a5df5ffefc6d33e4ee79d2ce75:arm5.b
- f52fbf7258422171312f2f7d4fc0ad74:apep.x86
- 99f3999d8cb60d61fbbdc71d4ffbc4ee:arm5.b.1
- 9192bcc10b73f052853c41e268f877a7:apep.spc
- 23fedcee5d6613834f91a7ac774445b3:juno.m68k
- de18ef710317b4f03a40409ead28e220:gpon
- e4073c26edd3d4fec40e7dcfc2096e14:juno.arm
- 77ee0ba81e4a2c687734baf7fa58796c:arm7.b.1
- be50e75cad9bf816f09a791917221666:juno.spc
- ef235249e20dc16fed2bad3d596dc6af:mpsl.b
- 9ed68e0f68b6eb28d035346cba588638:apep.ppc
- 2f0a6fb11136626f737e1847e2bacaa7:apep.sh4
To read the original article:
https://medium.com/@ahmedjouini99/juno-new-iot-botnet-eefe3d7dd3a9
Happy
0 %
Sad
0 %
Excited
0 %
Sleepy
0 %
Angry
0 %
Surprise
100 %
