CPbot: The Construction of Mobile Botnet Using GCM

In order to detect hacker attacks and take early countermeasures, this paper introduced a novel mobile botnet called CPbot which uses Google Cloud Messaging (GCM) to spread Trojan on Android devices. First, we presented the network model of this GCM based mobile botnet as well as its command and control (C&C) mechanism. Secondly, we illustrated the different roles that this botnet can play. Finally, we setup a simulation model to discuss the topology of this mobile botnet. The MATLAB simulation result shows that CPbot is robust against single point of failures and has good resiliency to shutdown attempts, its command dissemination is highly efficient and the bot App has very low battery consumption. This analysis indicates that mobile botnet is a leading threat to mobile network security; therefore we must deploy defense strategies against this botnet.

[1]  Wang Shuai,et al.  S-URL Flux: A Novel C&C Protocol for Mobile Botnets , 2012 .

[2]  Nikita Borisov,et al.  Stegobot: A Covert Social Network Botnet , 2011, Information Hiding.

[3]  David M. Nicol,et al.  The Koobface botnet and the rise of social malware , 2010, 2010 5th International Conference on Malicious and Unwanted Software.

[4]  Shuai Wang,et al.  S-URL Flux: A Novel C&C Protocol for Mobile Botnets , 2012, ISCTCS.

[5]  Kang G. Shin,et al.  Design of SMS commanded-and-controlled and P2P-structured mobile botnets , 2012, WISEC '12.

[6]  Kang G. Shin,et al.  Open WiFi networks: Lethal weapons for botnets? , 2012, 2012 Proceedings IEEE INFOCOM.

[7]  Wenke Lee,et al.  Evaluating Bluetooth as a Medium for Botnet Command and Control , 2010, DIMVA.

[8]  Fang Binxing,et al.  Andbot: towards advanced mobile botnets , 2011 .

[9]  Radu State,et al.  VoIP Malware: Attack Tool & Attack Scenarios , 2009, 2009 IEEE International Conference on Communications.