Entries filed under 'Zlkon'

Threat Research Blog

FireEye posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. These blog posts cover everything from exploits and vulnerabilities, to advanced malware and targeted attacks.

    Bad Actors Part 2 - ZlKon

    By Alex Lanstein
    In this edition of "rooting out the Bad Actors" I'm going to take a look at ZlKon, hosted by "Datoru Express Serviss, Ltd" in Latvia.As you can see, they only have a single /23 address block, but everything I found indicates that the whole range is dedicated to providing services for hosting malware, exploits, and those who profit from them.inetnum: -        ZLKONdescr:          ZlKoncountry:        LVrole:           ZlKon HostMasteraddress:        Lilijas iela 4-74address:        Riga, Read more...