Skip to content
MalwareWiki

Malware

KadNap

According to Black Lotus Labs, KadNap primarily targets Asus routers, conscripting them into a botnet that proxies malicious traffic.

KadNap is a Linux malware family.

Background

Black Lotus Labs reports that KadNap mainly goes after Asus routers, enrolling them into a botnet that relays malicious traffic. The malware uses a modified take on the Kademlia Distributed Hash Table (DHT) protocol to hide its infrastructure's IP addresses inside a peer-to-peer network, helping it slip past conventional network monitoring.

Source: Malpedia (Fraunhofer FKIE).