VoIP and PBX Security and Forensics by Iosif I. Androulidakis
Author:Iosif I. Androulidakis
Language: eng
Format: epub
Publisher: Springer International Publishing, Cham
3.16.8 Activate the Payload
The “payload” of the malware is the part of it that performs the malicious action. In the case of the PBX malware we are discussing that payload can have different forms, affecting confidentiality, integrity, and availability as we have seen throughout the book.
3.16.9 Delete Itself and Logs
Having already infiltrated new targets and having activated its payload in the current target, the malware would try to cover its track by deleting itself and the logs associated with its actions. It could even proceed to full wiping of the O/S of the target. It must be noted at this point that records in call logs are registered after a call ends, since they have to contain information about the duration of the call. In the case where the malware has propagated with a modem dial up call, it is impossible to delete the record that points to the number of the previous PBX that infected the present one. This is particularly important in low end PBXs that do not offer advanced O/S functionality such as time scheduled jobs (like UNIX cron tables). In such PBXs the malware has to call the target many times, each time deleting the logs associated with its previous functionality. Still, however, the last call will remain logged, unless the malware proceeds to a full wipe and crash-shut down of the PBX. As a side note, this paragraph reinforces the importance of having external logging platforms, independent of the PBX itself that regularly can be backed up.
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
Sass and Compass in Action by Wynn Netherland Nathan Weizenbaum Chris Eppstein Brandon Mathis(7399)
Grails in Action by Glen Smith Peter Ledbrook(7291)
Kotlin in Action by Dmitry Jemerov(4634)
Management Strategies for the Cloud Revolution: How Cloud Computing Is Transforming Business and Why You Can't Afford to Be Left Behind by Charles Babcock(4127)
The Age of Surveillance Capitalism by Shoshana Zuboff(3413)
Learn Windows PowerShell in a Month of Lunches by Don Jones(3236)
Mastering Azure Security by Mustafa Toroman and Tom Janetscheck(3017)
Mastering Python for Networking and Security by José Manuel Ortega(2937)
Blockchain Basics by Daniel Drescher(2884)
TCP IP by Todd Lammle(2633)
Microsoft 365 Identity and Services Exam Guide MS-100 by Aaron Guilmette(2546)
From CIA to APT: An Introduction to Cyber Security by Edward G. Amoroso & Matthew E. Amoroso(2478)
Hands-On Azure for Developers by Kamil Mrzyglod(2399)
React Native - Building Mobile Apps with JavaScript by Novick Vladimir(2336)
MCSA Windows Server 2016 Study Guide: Exam 70-740 by William Panek(2309)
The Social Psychology of Inequality by Unknown(2305)
Configuring Windows Server Hybrid Advanced Services Exam Ref AZ-801 by Chris Gill(2296)
The Art Of Deception by Kevin Mitnick(2295)
Azure Containers Explained by Wesley Haakman & Richard Hooper(2187)