MetaFisher: Next–Generation Bots and Phishing

Abstract

Abstract MetaFisher is a little-known code to most, yet it is one of the most important as we consider current-day and future threats. It's the most sophisticated bot ever developed. It utilizes a PHP command and control interface to monitor, update, and control bots. This is a pull technique instead of the traditional push technique utilized within IRC. Additionally, it contains sophisticated phishing attacks that dynamically inject HTML into targeted banking sites to steal information from the victim. MetaFisher is a cause for alarm, revealing the sophistication behind criminal fraud and hacker-for-hire situations that have matured over the past few years on the Internet.