Abstract
Zeus is a family of credential-stealing trojans which originally appeared in 2007. The first two variants of Zeus are based on centralized command servers. These command servers are now routinely tracked and blocked by the security community. In an apparent effort to withstand these routine countermeasures, the second version of Zeus was forked into a peer-to-peer variant in September 2011. Compared to earlier versions of Zeus, this peer-to-peer variant is fundamentally more difficult to disable. Through a detailed analysis of this new Zeus variant, we demonstrate the high resilience of state of the art peer-to-peer botnets in general, and of peer-to-peer Zeus in particular.
| Original language | English |
|---|---|
| Title of host publication | 2013 8th International Conference on Malicious and Unwanted Software [Proceedings] |
| Subtitle of host publication | "The Americas", MALWARE 2013 |
| Place of Publication | Fajardo, Puerto Rico, USA |
| Publisher | ACM, IEEE Computer Society |
| Pages | 116-123 |
| Number of pages | 8 |
| ISBN (Print) | 9781479925339 |
| DOIs | |
| Publication status | Published - 2013 |
| Event | 2013 8th International Conference on Malicious and Unwanted Software: "The Americas", MALWARE 2013 - Fajardo, PR, United States Duration: 22 Oct 2013 → 24 Oct 2013 |
Conference
| Conference | 2013 8th International Conference on Malicious and Unwanted Software: "The Americas", MALWARE 2013 |
|---|---|
| Country/Territory | United States |
| City | Fajardo, PR |
| Period | 22/10/13 → 24/10/13 |