Zeus Information

The Zeus Trojan is back in the media spotlight once more, and for good reason. Last week the FBI’s  Operation Trident Breach made worldwide headlines with over 100 arrests related to organized cybercrime operation activities  in the US, UK, and the Ukraine. The arrests relate to Cybercriminals and  money mules involved in stealing up to $70m from bank accounts through the use of the Zeus crimeware toolkit. The operation initiated by the FBI involved unprecedented partnerships between international law enforcement, such as the Netherlands Police Agency, the Security Service of Ukraine (SBU), and the United Kingdom’s Metropolitan Police Service. These arrests however are not the first related to use of the Zeus crimeware toolkit and in my opinion will not be the last. In November 2009, Symantec blogged about the arrest of two Zeus toolkit users in the UK.

 

 

- Zeus Explosion Leads to More Arrests.

 

 

 

The Zeus Trojan is back in the media spotlight once more, and for good reason. Last week the FBI’s  Operation Trident Breach made worldwide headlines with over 100 arrests related to organized cybercrime operation activities  in the US, UK, and the Ukraine. The arrests relate to Cybercriminals and  money mules involved in stealing up to $70m from bank accounts through the use of the Zeus crimeware toolkit. The operation initiated by the FBI involved unprecedented partnerships between international law enforcement, such as the Netherlands Police Agency, the Security Service of Ukraine (SBU), and the United Kingdom’s Metropolitan Police Service. These arrests however are not the first related to use of the Zeus crimeware toolkit and in my opinion will not be the last. In November 2009, Symantec blogged about the arrest of two Zeus toolkit users in the UK.

 

 

- Zeus Explosion Leads to More Arrests.

 

 

 

Hi Floating_Red,

 

Thanks for the information on this issue...most appreciated :smileyhappy:

 

Regards,

 

Stoneheart

Things are starting to get a little tougher in the botnet world. This year we have witnessed many shutdowns of major botnets and their owners arrested. We have also seen money mules arrested and - more importantly - arrests for the creators of the Trojan creation kits (Mariposa Butterfly toolkit). Clearly the everybody in the botnet food chain are beginning to feel pressure these days and, like in any business tough times often triggers consolidation of operators in the competitive landscape. According to an interesting report by Brian Krebs a couple of days ago, he noted that the Zeus (Zbot) toolkit creator has left (or perhaps sold) his business and the creator of the SpyEye toolkit have now taken over the support and development of the Zeus toolkit. This is an interesting development from a number of angles.

- Mergers and Acquisitions in the Malware Space.

As my colleague Kazumasa Itabashi outlined in this blog, TrojanZbot.B, a.k.a. Zeus Botnet, attempts to download files from URLs with random-looking domain names generated by the Trojan based on the system time.

 

 

- Configuration File Details of Trojan.Zbot.B.