VERY IMPORTANT

Since the Log4J vulnerability was exposed, the so-called "suddenly the vulnerability came overnight, the big black and the small gray laughed happily". Countless black production gangs are gearing up to join this "carnival party". Among them are many malware families that are very familiar to the industry, and some emerging forces want to take advantage of this shareholder wind to get a share of the black and gray production. As a team focused on detection and tracking of honeypots and Botnets, 360Netlab has been paying attention to which botnets will exploit this vulnerability since it was made public. During this period, we saw that old friends such as Elknot, Gafgyt, Mirai were never absent, and we also witnessed Some new friends made their debut.