Security

Pushdo Cutwail: A Study of the Pushdo Cutwail Botnet

Free registration required

Executive Summary

The Pushdo botnet has been with around since January 20071. The botnet is also known as Pandex or Cutwail. While it does not grab as many headlines as its attention-seeking peers such as Storm or Conficker, according to recent reports it is the 2nd largest SPAM botnet on the planet2 - sending approximately 7.7 Billion emails per day, making it single-handedly responsible for about 1 out of every 25 emails sent3. This percentage is likely to be a lot higher in Russia, the target of the majority of Pushdo's spam. There are several reasons for Pushdo's lack of notoriety - the authors have actively used several techniques to help keep its activity "under the radar".

  • Format: PDF
  • Size: 1904.4 KB