| Presentation | 2013-06-21 Network Observation and Analysis Report on nicter : Close Encountters of Network Incident Sign Junji NAKAZATO, Junpei SHIMAMURA, Masashi ETO, Daisuke INOUE, Koji NAKAO, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | In this paper, we reported sign of a network incident using a large-scale traffic which can be obtained with the darknet that is observed in the nicter project. First, we introduced a sign of Win32/Conficker that reported in 2009. Then, we introduced a sign of malware spread called as "Win32/Morto" that became a social problem since around August 2011. We found increase of the attack for port that is used by these malware, and a pandemic of the malware, by large-scale darknet monitoring. Finally, we reported on the DNS reflection attacks using open resolver that is very problematic in recent years. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Incident analysis / Malware / Dynamic Analysis |
| Paper # | IA2013-14,ICSS2013-14 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2013/6/13(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Network Observation and Analysis Report on nicter : Close Encountters of Network Incident Sign |
| Sub Title (in English) | |
| Keyword(1) | Incident analysis |
| Keyword(2) | Malware |
| Keyword(3) | Dynamic Analysis |
| 1st Author's Name | Junji NAKAZATO |
| 1st Author's Affiliation | National Institute of Information and Communications Technology() |
| 2nd Author's Name | Junpei SHIMAMURA |
| 2nd Author's Affiliation | clwit Inc. |
| 3rd Author's Name | Masashi ETO |
| 3rd Author's Affiliation | National Institute of Information and Communications Technology |
| 4th Author's Name | Daisuke INOUE |
| 4th Author's Affiliation | National Institute of Information and Communications Technology |
| 5th Author's Name | Koji NAKAO |
| 5th Author's Affiliation | National Institute of Information and Communications Technology |
| Date | 2013-06-21 |
| Paper # | IA2013-14,ICSS2013-14 |
| Volume (vol) | vol.113 |
| Number (no) | 95 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |