Exploring the Deep Web

More documents

Recommendations

Info

VAWTRAK C&C server that shows a legitimate-looking favicon fileBased on the presence of this favicon.ico file and the C&C server setup (many of which run openresty/1.7.2.1),we are able to search our system for a complete list of such sites and download the latest C&C server addresseach day.Discovered VAWTRAK C&C servers16 | Below the Surface: Exploring the Deep Web
CryptoLockerAnother major malware family that uses the Deep Web is CryptoLocker. CryptoLocker refers to a ransomwarevariant that encrypts victims’ personal documents before redirecting them to a site where they can pay toregain access to their files. CryptoLocker is also smart enough to automatically adjust the payment page toaccount for a victim’s local language and payment means.TorrentLocker—a CryptoLocker variant—makes use of TOR to host payment sites in addition to employingBitcoin as form of payment. It shows why the Deep Web appeals to cybercriminals who are willing to maketheir infrastructures more robust to possible takedowns.The following screenshots are payment pages that the Deep Web Analyzer captured. Both are rendered indifferent languages, giving us an idea of their intended victims and origin.Automatically formatted CryptoLocker pages for victims from Taiwan17 | Below the Surface: Exploring the Deep Web
Page 1 and 2: Below the Surface:Exploringthe Deep
Page 3: Interestin the Deep Web peaked in20
Page 6 and 7: What are the uses of the Deep Web?A
Page 8 and 9: The state of the Deep WebMany studi
Page 10 and 11: Looking at the language distributio
Page 12 and 13: What makes up the Deep Web?Many use
Page 14 and 15: The following table provides a brea
Page 18 and 19: 18 | Below the Surface: Exploring t
Page 20 and 21: The availability of illegal narcoti
Page 22 and 23: Bitcoin and money-laundering servic
Page 24 and 25: Sites that offer counterfeit US$20
Page 26 and 27: Unverified PayPal accounts sold in
Page 30 and 31: Leaked details: Government, law enf
Page 34 and 35: As shown, prices vary based on the
Page 36 and 37: The Deep Web and the real worldMain
Page 38 and 39: Law enforcement and the Deep WebLaw
Page 40 and 41: The future of the Deep WebWhile pub
Page 42 and 43: ConclusionThe Trend Micro Forward-L
Page 44 and 45: AppendixCatching NionSpy (aka Mewse
Page 46 and 47: References1. The Tor Project, Inc.
Page 48: Created by:The Global Technical Sup

Exploring the Deep Web

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?