- The development of Flame’s Command and Control platform started as early as December 2006.
- The C&C servers were disguised to look like a common Content Management System, to hide the true nature of the project from hosting providers or random investigations.
- The servers were able to receive data from infected machines using four different protocols; only one of them servicing computers attacked with Flame.
- The existence of three additional protocols not used by Flame provides proof that at least three other Flame-related malicious programs were created; their nature is currently unknown.
- One of these Flame-related unknown malicious objects is currently operating in the wild.
- There were signs that the C&C platform was still under development; one communication scheme named “Red Protocol” is mentioned but not yet implemented.
- There is no sign that the Flame C&Cs were used to control other known malware such as Stuxnet or Gauss.
LINK TO OUR HOME PAGE :