This month we add another bot family to MSRT - Win32/Pushbot. Pushbot is, in many ways, an "old school" bot. It is controlled through IRC, it can distribute itself through several different channels and its source code is more or less open (for those who mix in certain circles). Like Win32/Rbot, Pushbot isn't one piece of malware that is updated and maintained by one group of malware writers, but rather a collection of malicious programs created by different people based on a common base of source code. The core code of Pushbot is based on something called Reptile, which dates back to 2005. Reptile, in turn, appears to have been based Win32/Sdbot, just as Win32/Rbot was.

Read the full story on the blog