编号：WZUT-2024-18

标题：AggNoteBot: A Robust Botnet Building Using Aggressive Cloud Notes

入藏号：WOS: xxxx

中科院期刊分区：CCF C

本院作者：刘忆宁（通讯作者）

来源出版物：Information Security and Privacy卷: 14897

出版年：2024

关键词：Botnet; Cyber security; Cloud notes; Command and control channel

代表图：

Figure. Overall framework.

摘要：

The threat posed by botnets to cyber security has become increasingly severe, as these malicious networks spread various types of bot programs to control a large number of hosts and form a one-to-many network of controllable devices. To build the Command and Control (C&C) channel infrastructure, traditional botnets require a third-party server to act as a staging point between the attacker and controlled devices, but the failure of this infrastructure can cause the entire network to be paralyzed. Frequent purchase of servers, domain names and other network resources will not only increase the cost of consumption, but also lead to a significant increase in the risk of identity exposure (e.g., the purchase of these network resources require real-name authentication). In this paper, we propose a multi-channel communication model that is cost free by utilizing Cloud Notes software as the C&C channel. The feasibility of the model is evaluated in our experiments, and the results indicate that the robustness and anti-traceability of our approach are guaranteed.

链接：https://doi.org/10.1007/978-981-97-5101-3_18