Comments on: Win32/Kelihos, Recruiting in a Country Near You http://www.welivesecurity.com/2011/08/16/win32kelihos-recruiting-in-a-country-near-you/ News, Views, and Insight from the ESET Security Community Mon, 03 Feb 2014 08:49:00 +0000 hourly 1 http://wordpress.org/?v=3.7 By: David Harley http://www.welivesecurity.com/2011/08/16/win32kelihos-recruiting-in-a-country-near-you/#comment-3522 Wed, 17 Aug 2011 20:41:05 +0000 http://blog.eset.com/?p=9056#comment-3522 This might answer your question about money mules: As Pierre-Marc indicates, Kelihos is, like most active botnets, used for a range of activities (whatever makes money…). Earlier in its career, it was particularly associated with the theft of FTP passwords. Recently, it’s been used for stockmarket scams (a pump and dump scheme persuades people to buy low-value stock at an inflated price so that the scammer can sell it off at a large profit before it returns to a more realistic level). Pierre-Marc is, I think, suggesting that recruiting people to do moneylaundering is the next step in its monetizationn process.

]]>
By: Reggie Gates http://www.welivesecurity.com/2011/08/16/win32kelihos-recruiting-in-a-country-near-you/#comment-3521 Tue, 16 Aug 2011 21:21:31 +0000 http://blog.eset.com/?p=9056#comment-3521 OK, I'll ask…what is a money mule and what does Win32/Kelihos botnet do?  For us less technically orientated folks, more explanation would be helpful.
 
Thanks
R Gates

]]>