Table 3 Prevalence of different malware types and variants in the 200 investigated incidents
From: A quality metric for IDS signatures: in the wild the size matters
Malware type (number of incidents) | Variant (number of incidents) | IDS logs | Search engine | Blacklist data | Active scans |
|---|---|---|---|---|---|
Trojans (85) | FakeAV (27) | ✓ | ✓ | ||
Simbar (26) | ✓ | ✓ | |||
Monkif (18) | ✓ | ✓ | |||
Torpig (10) | ✓ | ✓ | ✓ | ✓ | |
Nervos (4) | ✓ | ✓ | |||
Spyware (59) | AskSearch (50) | ✓ | |||
MySearch (9) | ✓ | ||||
Backdoors (18) | SdBot (5) | ✓ | ✓ | ✓ | ✓ |
ZBot (5) | ✓ | ✓ | ✓ | ||
Blackenergy (4) | ✓ | ✓ | ✓ | ✓ | |
Parabola (2) | ✓ | ✓ | ✓ | ||
Ramsky (2) | ✓ | ✓ | |||
Worms (8) | Koobface (6) | ✓ | ✓ | ||
Conficker (2) | ✓ | ✓ | ✓ |