Difference between revisions of "Solar"

Latest revision as of 15:44, 8 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

Solar
Alias	Napolar
Group	Stealing
Parent
Sibling
Family
Relations	Variants: Sibling of: Parent of: Distribution of: Campaigns:
Target	Microsoft Windows
Origin
Distribution vector
UserAgent	Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
CCProtocol	HTTP (Centralized)
Activity	/
Status
Language
Programming language
Operation/Working group

	Author	Editor	Year
Win32/64:Napolar: New trojan shines on the cyber crime-scene	Peter Kálnai	Avast	2013

@@ Line 1: / Line 1: @@
 {{Botnet
+|Alias=Napolar
+|Target=Microsoft Windows
+|UserAgent=Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
+|CCProtocol=HTTP
+|Feature=File download, SOCKS, Bitcoin wallet theft, Bitcoin mining, Slowloris, Slow POST, UDP flood, GET flood, POP3 password theft, FTP password theft, SPDY grabbing, Internet Explorer form data theft, Firefox form data theft, Chrome form data theft,
+|Status=
+|BeginYear=
+|EndYear=
+|Group=Stealing
 |Fonctionnalités=* [[feature::Form data theft]] (Internet Explorer, Mozilla Firefox, Google Chrome)
 * [[feature::SPDY grabbing]]
@@ Line 9: / Line 18: @@
 * [[feature::File download]] to add plugins
 |Commercialisation=* $200
-|UserAgent=Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
 |Language1=Free Pascal
-|CCProtocol=HTTP
-|Target=Microsoft Windows
-|Status=Unknown
-|BeginYear=Unknown
-|EndYear=Unknown
-|Group=Stealing
 |Groupe2=DDoSing
-|Alias=Napolar
 |Vendor1=Avast
 |Victime4=
 }}