March 2012

Research

FAQ: Disabling the new Hlux/Kelihos Botnet

Q: What is the Hlux/Kelihos botnet?
A: Kelihos is Microsoft’s name for what Kaspersky calls Hlux. Hlux is a peer-to-peer botnet with an architecture similar to the one used for the Waledac botnet. It consists of layers of different kinds of nodes: controllers, routers and workers.





  • Subscribe

  • Reports

    Andariel deploys DTrack and Maui ransomware

    Earlier, the CISA published an alert related to a Stairwell report, “Maui Ransomware.” Our data should openly help solidify the attribution of the Maui ransomware incident to the Korean-speaking APT Andariel, also known as Silent Chollima and Stonefly.

    APT trends report Q2 2022

    This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q2 2022.

    Subscribe to our weekly e-mails

    The hottest research right in your inbox