Abstract
With the widespread adoption of Internet advertising, fraud has become a systemic problem. While the existence of clickbots - malware specialized for conducting click-fraud - has been known for a number of years, the actual functioning of these programs has seen little study. We examine the operation and underlying economic models of two families of modern clickbots, "Fiesta" and "7cy." By operating the malware specimens in a controlled environment we reverse-engineered the protocols used to direct the clickbots in their activities. We then devised a milker program that mimics clickbots requesting instructions, enabling us to extract over 360,000 click-fraud directives from the clickbots' control servers. We report on the functioning of the clickbots, the steps they employ to evade detection, variations in how their masters operate them depending on their geographic locality, and the differing economic models underlying their activity. © 2011 Springer-Verlag.
Cite
CITATION STYLE
Miller, B., Pearce, P., Grier, C., Kreibich, C., & Paxson, V. (2011). What’s clicking what? Techniques and innovations of today’s clickbots. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6739 LNCS, pp. 164–183). https://doi.org/10.1007/978-3-642-22424-9_10
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
