Admin
Admin
Jumlah posting : 229
Points : 672
Join date : 02.04.11
 |  Subyek: Latest ZeuS Source Code  Tue Apr 12, 2011 3:43 pm | |
| Cybercriminals offer source code for the infamous worm ZeuS on underground forums.
Prospective seller, with the nickname IOO, gives credence to the proposal, adding screenshots of the source code ZeuS in its offer. IOO proposes to discuss a deal with the upcoming buyers via Jabber or ICQ. He is ready to accept payments through any bank account, issued by a third party.
Screenshots show peinfector.cpp, project ZeuS, known as Murofet. Researchers at the security sector are not yet able to confirm the authenticity of the sale, but the perceived potential offer seriously.
"This was preceded by several rumors that the code Zeus / Zbot was sold creator SpyEye ", - writes Peter Cruz, an expert on kiberkriminalu who works at the Danish consulting company dealing with security, CSIS.
"Today it is unconfirmed information - but absolutely accurate fact that someone other than the author of the worm ZeuS / Zbot, has access to the code."
Is it so unusual sale IOO, or not - is unknown, but Cruz is sure that the secret recipe ZeuS became available a large number of people in recent weeks. "We also zametililogi, confirming that the code ZeuS / Zbot now available to a wider audience," - he said.
In October, the FBI announced the exposure of a large group of cyber criminals who used ZeuS to steal $ 70 million. About 50 suspected phishing middlemen in the U.S. and UK declared suspected of involvement in the operation. Moreover, five Ukrainians suspected of controlling the entire operation, were detained. The identity of the actual creator of ZeuS remains unknown. - Code:
-
# Archive C:\Users\%@%\Downloads\z2.rar
2010-10-14 23:00 266752 91056 z2\bin\7z.exe
2010-10-14 23:00 11264 5472 z2\bin\bt.exe
2010-10-14 23:00 84480 43024 z2\bin\FASM.EXE
2010-10-14 23:00 193536 91584 z2\bin\PHP\ext\php_gmp.dll
2010-10-14 23:00 1862144 417248 z2\bin\PHP\ext\php_mbstring.dll
2010-10-14 23:00 33280 13312 z2\bin\PHP\ext\php_sockets.dll
2010-10-14 23:00 23552 10784 z2\bin\PHP\php.exe
2010-10-14 23:00 27281 10080 z2\bin\PHP\php.ini
2010-10-14 23:00 5752320 2125504 z2\bin\PHP\php5ts.dll
2010-10-14 23:00 271872 270400 z2\bin\upx.exe
2010-10-14 23:00 953144 355936 z2\bin\zendenc5.exe
2011-03-10 03:29 26 48 z2\config.ini
2010-10-14 23:00 402 176 z2\configs\buildtools\config
2010-10-14 23:00 412 176 z2\configs\debug\config
2011-03-12 09:22 412 176 z2\configs\default\config
2011-01-06 20:35 412 176 z2\configs\full\config
2010-10-14 23:00 1050 592 z2\geobase\convert_maxmind_country.php
2010-10-14 23:00 2839738 690992 z2\geobase\country[maxmind].txt
2010-10-14 23:00 8591577 1525168 z2\geobase\GeoIPCountryWhois.csv
2010-10-14 23:00 65937 8320 z2\include\imnact.h
2010-10-14 23:00 43163 3680 z2\include\iregexp2.h
2010-10-14 23:00 334257 33104 z2\include\mimeole.h
2010-10-14 23:00 71757 7776 z2\include\msoeapi.h
2010-10-14 23:00 142248 23104 z2\include\X11\keysymdef.h
2010-10-14 23:00 8180 1952 z2\lib\x32\lde32.lib
2010-10-14 23:00 411894 50688 z2\lib\x32\ntdll.lib
2010-10-14 23:00 12482 2000 z2\lib\x64\lde64.lib
2010-10-14 23:00 381868 47776 z2\lib\x64\ntdll.lib
2010-10-14 23:00 2916 1088 z2\make\baseconfig.inc.php [You must be registered and logged in to see this link.] | |
|
