20 September 2017
visit www.avoka.com

Zeus-Carberp mashup Trojan targets banks

29 May 2014  |  5796 views  |  0 Computer virus

A new Trojan that combines elements of the notorious Zeus and Carberp families is targeting hundreds of financial institutions around the world, security researchers are warning.

Trusteer says that the Trojan, which they have dubbed Zberp, seems to have been assembled from the leaked source code of Zeus and Carberp.

The result of the mashup enables cyber-crooks to grab basic information about the infected computer, including the name, IP and more. It can take screen shots and send them to the attacker. It steals data submitted in HTTP forms, user SSL certificates and even FTP and POP account credentials.

The malware also uses evasion techniques that it inherited from both Zeus and Carberp to hide from anti-virus and anti-malware tools.

According to Trusteer, Zberp has been targeting more than 450 financial institutions around the world, mainly in the US, UK and Australia.

Say researchers Martin Korman and Tal Darsan: "Since the source code of the Carberp Trojan was leaked to the public, we had a theory that it won't take cyber criminals too long to combine the Carberp source code with the Zeus code and create an evil monster."

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Carberp banking malware source code leaked

Carberp banking malware source code leaked

27 June 2013  |  5241 views  |  0 comments | 2 linkedin
Bitcoin-mining Trojan infects PCs

Bitcoin-mining Trojan infects PCs

08 April 2013  |  6231 views  |  0 comments | 8 tweets | 4 linkedin
Cyber gang plots coordinated Trojan attack on 30 US banks - RSA

Cyber gang plots coordinated Trojan attack on 30 US banks - RSA

05 October 2012  |  9253 views  |  0 comments
Microsoft takes down Zeus botnets

Microsoft takes down Zeus botnets

26 March 2012  |  5950 views  |  0 comments
Banking Trojan hijacks out-of-band SMS security - Trusteer

Banking Trojan hijacks out-of-band SMS security - Trusteer

07 October 2011  |  10167 views  |  4 comments
Zeus makes move to investment fraud

Zeus makes move to investment fraud

27 April 2011  |  7373 views  |  0 comments
Cybercrook peddles Zeus source code

Cybercrook peddles Zeus source code

24 March 2011  |  8856 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.temenos.comvisit www.capgemini.comvisit www.sibos.com

Who is commenting?

A Finextra member Finextra Member Commented on: The C-Suite Challenges...
A Finextra member Finextra Member Commented on: Dutch bank sentences t...

Top topics

Most viewed Most shared
HSBC switches on selfie payments in ChinaHSBC switches on selfie payments in China
10303 views comments | 22 tweets | 39 linkedin
Equifax hack: Visa and Mastercard flag 200k compromised credit cardsEquifax hack: Visa and Mastercard flag 200...
10260 views comments | 6 tweets | 17 linkedin
Dutch bank sentences teenage DDoS culprit to community serviceDutch bank sentences teenage DDoS culprit...
9114 views comments | 6 tweets | 3 linkedin
UAE banks pool cyber security dataUAE banks pool cyber security data
7587 views comments | 5 tweets | 4 linkedin
ING moves into digital wealth management with Scalable CapitalING moves into digital wealth management w...
7463 views comments | 14 tweets | 15 linkedin

Featured job

Competitive
London, UK (or flexible)

Find your next job