Zeus
Description
(Talos) One of the most high-profile pieces of malware in the current threat landscape is Zeus/Zbot, a nasty little trojan that has been employed by botnet operators around the world to steal banking credentials and other personal data, participate in click-fraud schemes, and likely numerous other criminal enterprises. It is the engine behind notorious botnets such as Kneber, which has recently made headlines worldwide. The following is an analysis of the network traffic generated by machines that Talos intentionally infected with known Zeus samples, in order to study post-infection behavior. The machines were all base installations of Windows XP, Service Pack 2, with no patches - i.e., designed to be as vulnerable as possible.
Names
| Name |
|---|
| Zeus |
| ZeuS |
| Zbot |
| Trojan.Zbot |
| Wsnpoem |
| Gorhax |
| Kneber |
Category
Malware
Type
- Banking trojan
- Info stealer
- Credential stealer
- Downloader
- Botnet
Information
- https://talosintelligence.com/zeus_trojan
- https://usa.kaspersky.com/resource-center/threats/zeus-virus
- http://malwareint.blogspot.com/2010/02/facebook-phishing-campaign-proposed-by.html
- http://malwareint.blogspot.com/2010/02/zeus-on-irs-scam-remains-actively.html
- http://eternal-todo.com/blog/new-zeus-binary
- https://nakedsecurity.sophos.com/2010/07/24/sample-run/
- https://www.mnin.org/write/ZeusMalware.pdf
- http://malwareint.blogspot.com/2010/01/leveraging-zeus-to-send-spam-through.html
- http://eternal-todo.com/blog/zeus-spreading-facebook
- http://malwareint.blogspot.com/2010/03/new-phishing-campaign-against-facebook.html
- http://eternal-todo.com/blog/detecting-zeus
- https://www.secureworks.com/research/zeus?threat=zeus
- http://malwareint.blogspot.com/2009/07/special-zeus-botnet-for-dummies.html
- https://en.wikipedia.org/wiki/Zeus_(malware)
- https://blog.malwarebytes.com/101/2021/07/the-life-and-death-of-the-zeus-trojan/
Malpedia
Other Information
Uuid
f186f5ea-0a67-47ff-affc-41f34e62725e
Last Card Change
2021-08-09