Duqu (Malware)
From Conservapedia DuQu is computer malware classified as a Trojan Horse. It is built with the same basic source code of Stuxnet, so it has been concluded that this malware was designed and released by the same party responsible for Stuxnet. Some are even referring to DuQu as Stuxnet 2.0.[1] In general, this Trojan Horse was designed for intelligence gathering and espionage.[2] There have been two versions of this malware released so far—the latter was detected in June 2015.[3]
Technical Specifics[edit]
Duqu is often delivered as a Microsoft Word document. Once opened, it exploits what was at the time of release a zero-day vulnerability (that is, one which was completely unknown) in font handling. Once a computer is infected, it opens a "back door" and begins downloading the main content of the malware. It also has rootkit functionality, so it can run nearly invisibly on the host computer.[4][5]
Vulnerable Operating Systems[edit]
- Windows NT
- Windows 95
- Windows 98
- Windows 2000
- Windows Me
- Windows Server 2003
- Windows XP
- Windows Server 2008
- Windows Vista
- Windows 7[6]
References[edit]
- ↑ http://www.pcworld.com/article/242114/duqu_new_malware_is_stuxnet_2.html
- ↑ http://www.kaspersky.com/about/press/major_malware_outbreaks/duqu
- ↑ http://www.kaspersky.com/about/news/virus/2015/Duqu-is-back
- ↑ https://www.symantec.com/security_response/writeup.jsp?docid=2011-101814-1119-99
- ↑ https://securelist.com/blog/incidents/32463/duqu-faq-33
- ↑ https://www.symantec.com/security_response/writeup.jsp?docid=2011-101814-1119-99
Categories: [Malware]
↧ Download as ZWI file | Last modified: 02/25/2023 08:39:14 | 9 views
☰ Source: https://www.conservapedia.com/DuQu_(malware) | License: CC BY-SA 3.0
ZWI signed:
KSF