In this analysis, we focus on a recently discovered cyber-espionage threat named Turla that is also called Uroburos or Snake. It has a tight connection with Agent.BTZ that infiltrated Pentagon in 2008. Turla is an advanced malware with sophisticated rootkit features for hiding its presence. Furthermore, it is based on a distributed C&C architecture that can be used for a wide range of purposes such as cyber espionage or credentials theft. Based on the investigation of other Turla samples, it is highly probable that this is not a work of an individual, but it was rather developed by an experienced team.
read more..........http://blogs.avg.com/news-threats/turla-rootkit-analysed/
read more..........http://blogs.avg.com/news-threats/turla-rootkit-analysed/