Duqu C&C forensics

30 Nov 2011

Great write-up from Kaskersky in their article The Mystery of Duqu: Part Six (The Command and Control servers). Although they didn't really find anything, it does show some real-world server forensics to try and figure out how the Duqu controllers got onto these servers, what they were doing there, and how they tried to cover up their tracks.