FireEye Platform
- - Read About Advanced Cyber Threats >
  - Why Don't Traditional Defenses Work? >
  - Why FireEye? >
- White Paper
  
  Protecting Your Data, Intellectual Property, and Brand from Cyber Attacks
  
  Guide for CIOs, CFOs, and CISOs on why traditional security defenses are failing and how losing the security battle can hurt your business
  
  Download >
Products & Solutions
- - Threat Prevention Platforms
  - Network Security (NX Series)
  - Email Security (EX Series)
  - Content Security (FX Series)
  - Endpoint Security (HX Series)
  - Cloud-Based Platforms
  - Email Threat Prevention
  - Mobile Threat Prevention
  - Threat Analytics Platform
  - Forensics
  - Network Forensics (PX Series)
  - Forensic Analysis (AX Series)
  - Endpoint Forensics (MIR)
  - Subscriptions and Management
  - Managed Defense
  - Central Management (CM Series)
  - Dynamic Threat Intelligence (DTI)
- - Solutions
  - Data Center
  - Small and Midsize Businesses
  - Industry Solutions
  - Government
  - Pharmaceutical
  - Retail
  - Services
  - Mandiant Services
  - Resources
  - Visio Stencils
- Webcast
  
  Product Demo
  
  Inside look at stopping zero-day attacks and advanced persistent threats with FireEye
  
  View >
Info Center
- White Paper
  
  Advanced Targeted Attacks
  
  Look into the changing nature of today's advanced targeted attacks and why traditional IT security is inadequate
  
  Download >
Partners
- - Partner Login Required
  - Partner Enablement - The Fuel Station
  - Partner Portal
  - Education Center
- White Paper
  
  Spear Phishing Attacks
  
  Deep dive into spear phishing attacks and what is needed to combat this type of advanced threat
  
  Download >
News & Events
- Video
  
  The New Threat Landscape
  
  Insight into how FireEye is able to combat even the most sophisticated threats
  
  View >
Company
- Brochure
  
  FireEye Corporate Overview
  
  Overview of the FireEye product family which protects against advanced cyber attacks
  
  Download >

Blog

Backdoor.ADDNEW (DarkDDoser) and Gh0st, a match made in heaven?

November 6, 2012 | By Vinay Pidathala |

At FireEye we monitor all kinds of attacks: targeted, non-targeted, and everything in between. We always try to figure out, not just how a piece of malicious code works, but also other possibilities, like whether it is related to some other malware, in what way, etc.

Gh0st has been much talked about and there is a lot of good research out there on this RAT (Remote Access Trojan). This RAT has been used in many serious attacks and a quick Google search on the Gh0st RAT will give you a lot of good articles which will go into great detail about the versions and the inner workings of the malware. However this post is not about Gh0st. Very recently while investigating some of these Gh0st infections, we identified another interesting piece of malware.

White Paper

Protecting Your Data, Intellectual Property, and Brand from Cyber Attacks

Webcast

Product Demo

White Paper

Advanced Targeted Attacks

White Paper

Spear Phishing Attacks

Video

The New Threat Landscape

Brochure

FireEye Corporate Overview

Blog