MalwareIntelligence is a site dedicated to research on all matters relating to anti-malware security, criminology computing and information security in general, always from a perspective closely related to the field of intelligence.


Botnet Zeus. Mass propagation of his Trojan. Part one

Speaking of phishing attacks or kits at this point in history is nothing new, nor is talk of malware infection techniques and their increasingly sophisticated and increasingly aggressive, but the spread and cases of infection and fraud does not stop, even today is a business, apparently very profitable for those behind.

ZeuS (also known as zbot or wsnpoem) precisely squarely into the category of fraudulent and harmful. This is basically a Trojan designed to recruit PCs zombies and phishing attacks to financial institutions, banking, social networking sites, steal data from email authentication, FTP accounts, etc.., combining techniques of scripting, exploit, among other. Exe / new_dir / ldr. Exe / tmp / ldr. Exe Exe / nuc / exe. Php Exe / zv / cfg. Bin Txt Exe Exe Exe Exe Exe / images / menu. Exe Exe / dll / cr. Txt Exe Exe Ini / fkn / config. Bin / lsass. Exe / forum / load. Php? Id = 861 & spl = 7 World Exe / zw / cfg. Bin Exe / zsadmin / ldr. Exe / frontman / ldr. Exe Txt Txt / Info. Exe / z / setup. Ini Bin / awstats / usbtn / conf. Sts Exe / vateranery / imgpe. Bin Exe / tru / ldr. Exe Exe / css / cs. Bin Bin

It's quite dangerous if we consider that, in addition to the typical actions of the malware, can be obtained by any person to deposit a certain amount of money in the account of its creators.

Perhaps this is one of the best reasons to argue why the large number of variants of "ZeuS" who are In-the-Wild stalking our systems seeking to recruit zombies. The truth is that, although it lives up to its name, is one of the largest botnet time.

Even though this last feature is threatened by other "alternative" world Waledac botnet as the recent Adrenalin, or smaller (in magnitude) Asprox (aka Danmec), the truth is we must be cautious not to be victims of these threats are always looking to successfully carry out its mission: to get our money and computer resources.

Related information
Phishing Kit In-the-Wild for cloning websites
Waledac more loving than ever
Danmec Bot, Fast-Flux networks and recruitment of ...
Malware attack via Drive-by-Download

Jorge Mieres

0 comentarios:

Post a Comment