skip navigation


Register for Latest Research

Stay Informed
Register with NCJRS to receive NCJRS's biweekly e-newsletter JUSTINFO and additional periodic emails from NCJRS and the NCJRS federal sponsors that highlight the latest research published or sponsored by the Office of Justice Programs.

NCJRS Abstract

The document referenced below is part of the NCJRS Virtual Library collection. To conduct further searches of the collection, visit the Virtual Library. See the Obtain Documents page for direction on how to access resources online, via mail, through interlibrary loans, or in a local library.


NCJ Number: 230111 Add to Shopping cart Find in a Library
Title: Examining the Creation, Distribution, and Function of Malware On-Line
Author(s): Bill Chu Ph.D.; Thomas J. Holt Ph.D.; Gail Joon Ahn Ph.D.
Date Published: 2010
Page Count: 183
Sponsoring Agency: National Institute of Justice (NIJ)
Washington, DC 20531
National Institute of Justice/NCJRS
Rockville, MD 20849
NCJRS Photocopy Services
Rockville, MD 20849-6000
Grant Number: 2007-IJ-CX-0018
Sale Source: National Institute of Justice/NCJRS
Box 6000
Rockville, MD 20849
United States of America

NCJRS Photocopy Services
Box 6000
Rockville, MD 20849-6000
United States of America
Document: PDF
Format: Document
Language: English
Country: United States of America
Annotation: The global adoption of the Internet has engendered the growth of significant threats from computer criminals around the world using malicious software (malware), including a new form called “bots”, to automate attacks and enable multiple forms of cybercrime.
Abstract: Computer crimes are costly, and many appear to be perpetrated by computer hackers in foreign countries, particularly Russia and Eastern Europe. These attackers often use malicious software (malware) to automate attacks and enable multiple forms of cybercrime. Malware takes over an infected computer, allowing it to receive commands remotely. Bots are custom programs, but are also bought and sold in virtual markets. Researchers have, however, only begun to explore the prevalence and origins of this form of malware and its potential as an attack tool. Thirteen quarentined bots were analyzed to determine their utility and function in a simulated computing environment. The findings suggest that these bots had a significant impact on system functionality by changing system protocols, including adding and removing files, and attempting to connect to command and control IRC servers. The sale of bots and malware on the online black market was examined using a sample of threads collected from public web-forums. The findings suggest that a virtual service economy has developed around this market, in addition to credit card and identity documents. Though malicious software takes some skill to create, selling and offering access to malware programs enables hackers of any skill to participate in attacks ranging from Distributed Denial of Service attacks to spam. As a whole, this study demonstrates the key role that bots and other malware play in the facilitation of cybercrime. Thus, there is a significant need to disrupt botnets and the markets that facilitate the distribution of malware and hack tools. References and appendix
Main Term(s): Computer related crime
Index Term(s): Computer abuse; Computer crime prevention measures; Computer privacy and security; Computer software; Crime in foreign countries; Eastern Europe; Russian Federation
To cite this abstract, use the following link:

*A link to the full-text document is provided whenever possible. For documents not available online, a link to the publisher's website is provided. Tell us how you use the NCJRS Library and Abstracts Database - send us your feedback.