Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What is Kido/Conficker/Downadup?

conficker downadup kido
0
Posted

What is Kido/Conficker/Downadup?

0 CommentsAdd a Comment

1 Answer

0

Kido (Net-Worm.Win32.Kido), also known as Conficker and Downadup, is a malicious program which spreads on Windows networks. The first generation of Kido programs were obfuscated worms with Trojan-Downloader functionality. The latest variants of Kido do not propagate and work as Trojan-Downloaders. Kido has created a powerful botnet of infected machines and uses quite sophisticated technologies to prevent removal. It attempts to download updates to itself from a huge list of constantly changing domain names; it uses P2P channels as an additional control mechanism; it also uses strong encryption to protect against interference by third parties; and finally it prevents security solutions from updating over the Internet. The latest generation of this malicious program also generates a dramatically increased number of unique domain names which it can contact to download daily updates: 50,000 in contrast to the 250 generated and contacted by previous versions.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123