{
	"id": "8b6f4ece-c9a3-49b7-a24c-e8c0fba76402",
	"created_at": "2026-04-06T00:22:26.937602Z",
	"updated_at": "2026-04-10T13:11:26.331197Z",
	"deleted_at": null,
	"sha1_hash": "14570e9d7f7bd41a4c10db4c9da2d9012ef69148",
	"title": "Nitol botnet",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 44551,
	"plain_text": "Nitol botnet\r\nBy Contributors to Wikimedia projects\r\nPublished: 2012-12-27 · Archived: 2026-04-02 11:25:52 UTC\r\nFrom Wikipedia, the free encyclopedia\r\nThe Nitol botnet mostly involved in spreading malware and distributed denial-of-service attacks.\r\nThe Nitol Botnet was first discovered around December 2012, with analysis of the botnet indicating that the\r\nbotnet is mostly prevalent in China where an estimate 85% of the infections are detected. In China the botnet was\r\nfound to be present on systems that came brand-new from the factory, indicating the trojan was installed\r\nsomewhere during the assembly and manufacturing process. According to Microsoft the systems at risk also\r\ncontained a counterfeit installation of Microsoft Windows.\r\nOn 10 September 2012 Microsoft took action against the Nitol Botnet by obtaining a court order and subsequently\r\nsinkholing the 3322.org domain.[1] The 3322.org domain is a Dynamic DNS which was used by the botnet\r\ncreators as a command and control infrastructure for controlling their botnet. Microsoft later settled with 3322.org\r\noperator Pen Yong, which allowed the latter to continue operating the domain on the condition that any\r\nsubdomains linked to malware remain sinkholed.[2]\r\nInternet crime\r\nInternet security\r\n1. ^ Leyden, John (13 September 2012). \"Microsoft seizes Chinese dot-org to kill Nitol bot army\". The\r\nRegister. Retrieved 27 December 2012.\r\n2. ^ Leyden, John (4 October 2012). \"Chinese Nitol botnet host back up after Microsoft settles lawsuit\". The\r\nRegister. Retrieved 27 December 2012.\r\nAnalysis of the Nitol Botnet, created by Microsoft as part of Operation b70\r\nSource: https://en.wikipedia.org/wiki/Nitol_botnet\r\nhttps://en.wikipedia.org/wiki/Nitol_botnet\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://en.wikipedia.org/wiki/Nitol_botnet"
	],
	"report_names": [
		"Nitol_botnet"
	],
	"threat_actors": [],
	"ts_created_at": 1775434946,
	"ts_updated_at": 1775826686,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/14570e9d7f7bd41a4c10db4c9da2d9012ef69148.pdf",
		"text": "https://archive.orkl.eu/14570e9d7f7bd41a4c10db4c9da2d9012ef69148.txt",
		"img": "https://archive.orkl.eu/14570e9d7f7bd41a4c10db4c9da2d9012ef69148.jpg"
	}
}