![]() ![]() It also has different DDoS functionality. Mirai is a botnet that initiates its communication with its command and control (C&C). However, there is a difference between the Mirai malware and the new malware variants using Go, including differences in the language in which it is written and the malware architectures. Some AVs detect these new malware variants using Go as Mirai malware - the payload links do look similar. VirusTotal scanning results of BotenaGo malware Some of the reasons for its rising popularity relate to the ease of compiling the same code for different systems, making it easier for attackers to spread malware on multiple operating systems.Īs of the publishing of this article, BotenaGo currently has low antivirus (AV) detection rate with only 6/62 known AVs seen in VirusTotal: (Figure 1)įigure 1. ![]() The site suggests there has been a 2,000% increase in malware code written in Go being found in the wild. ![]() Golang (also known as Go) is an open-source programming language designed by Google and first published in 2007 that makes it easier for developers to build software.Īccording to a recent Intezer post, the Go programming language has dramatically increased in its popularity among malware authors in the last few years. It is yet unclear which threat actor is behind the malware and number of infected devices.The malware creates a backdoor and waits to either receive a target to attack from a remote operator through port 19412 or from another related module running on the same machine.BotenaGo has more than 30 different exploit functions to attack a target.Deployed with more than 30 exploits, it has the potential of targeting millions of routers and IoT devices. AT&T Alien Labs™ has found new malware written in the open source programming language Golang. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |