A Threat to Cyber Resilience : A Malware Rebirthing Botnet
Document Type
Conference Proceeding
Publisher
secau - Security Research Center
Faculty
Faculty of Computing, Health and Science
School
School of Computer and Security Science / Security Research Centre (secAU)
RAS ID
12757
Abstract
This paper presents a threat to cyber resilience in the form of a conceptual model of a malware rebirthing botnet which can be used in a variety of scenarios. It can be used to collect existing malware and rebirth it with new functionality and signatures that will avoid detection by AV software and hinder analysis. The botnet can then use the customized malware to target an organization with an orchestrated attack from the member machines in the botnet for a variety of malicious purposes, including information warfare applications. Alternatively, it can also be used to inject known malware signatures into otherwise non malicious code and traffic to overloading the sensors and processing systems employed by intrusion detection and prevention systems to create a denial of confidence of the sensors and detection systems. This could be used as a force multiplier in asymmetric warfare applications to create confusion and distraction whilst attacks are made on other defensive fronts.
Access Rights
free_to_read
Comments
Brand, M. W., Valli, C. , & Woodward, A. J. (2011). A Threat to Cyber Resilience : A Malware Rebirthing Botnet. Paper presented at the 2nd International Cyber Resilience Conference. Duxton Hotel. Available here