zeusmuseum. - References

References - All (499)

2006-10-11: Java start and file download (Prg)
2006-10-11: Sister's log (Prg)
2006-11-13: [Prg] Malware Case Study (Prg)
2006-11-18: Recently emerging trojan ntos.exe (Prg)
2007-03-22: Massive malware run against ABN-AMRO customers (Prg)
2007-06-25: PRG Trojan (Prg)
2007-07-16: Ransomware... Holding Corporate America Ransom! (Prg)
2007-07-17: Trojan.Gpcoder.E (Prg)
2007-07-17: ntos.pdf (Prg)
2007-07-18: Virus Descriptions 101 (Prg)
2007-07-19: Connecting the dots on the ransomware case (Prg)
2007-07-23: The Evolution of GPCode/Glamour RansomWare (Prg)
2007-08-09: Hackers steal U.S. government, corporate data from PCs (Prg)
2007-08-16: Prg Trojan-Injected Ads on Job Sites – 46,000 Victims Infected Thus Far (Prg)
2007-08-17: A Monster Trojan (Prg)
2007-08-17: Would You Like A Job With That Virus? (Prg)
2007-08-21: Would you apply for this job? (Prg)
2007-11-30: Malicious code evolution: July – September 2007 (Prg, Zeus 1)
2007-12-12: Hackers Use Stealthy, New Prg Banking Trojan to Attack Commercial Banking Clients in Four Countries (Prg)
2008-04-24: Crimeware in the Middle - Zeus (Zeus 1)
2008-05-20: EULA & Anleitung von wsnpoem (Zeus 1)
2008-07-20: Hinter den Kulissen von wsnpoem (Prg)
2008-08-04: Meet A-Z: The computer hacker behind a cybercrime wave (Zeus 1)
2008-08-20: wsnpoem: Fedex Tracking (Prg)
2008-09-09: wsnpoem: IPLOGS.zip (Prg)
2008-10-22: Internationale hackers aangehouden in Oekraïne en Rusland (Prg)
2008-10-23: WSNPoem: Täter verhaftet? (Prg)
2008-11-03: Modified Zeus Crimeware Kit Gets a Performance Boost (Zeus 1)
2008-11-12: WSNPoem: UPSInvoice_90001.exe (Prg)
2008-12-04: Zeus Crimeware as a Service Going Mainstream (Zeus 1)
2008-12-12: Zeus Config Decryptor (Zeus 1)
2009-02-09: Introducing: abuse.ch ZeuS Tracker BETA (Citadel, Ice IX, KINS, Zeus 1, Zeus 2)
2009-03-20: Insight a ZeuS C&C server (Zeus 1)
2009-04-07: When a Bot master goes mad - Kill the OS (Zeus 1)
2009-05-07: ZeusTracker and the Nuclear Option (Zeus 1)
2009-05-26: Zeus Trojan Family (Zeus 1)
2009-06-01: Botnet. Securización en la nueva versión de ZeuS (Zeus 1)
2009-07-02: PC Invader Costs Ky. County $415,000 (Zeus 1)
2009-07-11: Special!!! ZeuS Botnet for Dummies (Zeus 1)
2009-07-28: ZeuEsta: ZeuS cybercrime hosting with SPack (Zeus 1)
2009-08-25: Zeus, King of the Underground Crimeware Toolkits (Zeus 1)
2009-09-14: Measuring the in-the-wild effectiveness of Antivirus against Zeus (Zeus 1)
2009-09-16: Time to Revisit Zeus Almighty (Zeus 1)
2009-09-19: HAR 2009: The ZeuS evolution 2/6 (Prg, Zeus 1)
2009-09-19: HAR 2009: The ZeuS evolution 3/6 (Prg, Zeus 1)
2009-09-19: HAR 2009: The ZeuS evolution 4/6 (Prg, Zeus 1)
2009-09-19: HAR 2009: The ZeuS evolution 5/6 (Prg, Zeus 1)
2009-09-28: New IRS Scam E-mail Could Be Costly (Zeus 1)
2009-10-01: Detecting ZeuS (Zeus 1)
2009-10-01: Zeus: King of the Bots (Zeus 1)
2009-10-14: Trojan Turns Smash & Grab Into Grab & Smash (Zeus 1)
2009-10-14: Zeus: God of DIY Botnets (Zeus 1)
2009-11-06: New ZeuS binary (Zeus 1)
2009-11-12: Newest Zeus = NACHA: The Electronic Payments Association (Zeus 1)
2009-11-18: 'Trojan' computer virus arrests (Zeus 1)
2009-11-18: Two Arrested Over Computer Virus Plot (Zeus 1)
2009-11-18: Two held in global PC fraud probe (Zeus 1)
2009-11-18: Two held over ZeuS trojan virus that steals personal data (Zeus 1)
2009-11-19: Darkode Repository: Zeus Zbot British Police (Zeus 1)
2009-11-27: British Police Arrested Couple for Spreading Zeus Trojan (Zeus 1)
2010-01-26: Malicious Fake ABA Websites (Zeus 1)
2010-02-01: SpyEye Bot (Part two) Conversations with the creator of crimeware (Zeus 1)
2010-02-04: SpyEye Bot versus Zeus Bot (Zeus 1)
2010-02-05: Spammers Exploit American Bankers Association Name to Malicious Scam (Zeus 1)
2010-02-17: The “Kneber” Botnet: A ZeuS Discovery and Analysis (Zeus 1)
2010-02-19: F-Secure's First Zeus (10/10/2007) (Zeus 1)
2010-02-19: Kneber Update (Zeus 1)
2010-02-19: ZeuS: ‘A Virus Known as Botnet’ (Zeus 1)
2010-02-23: Rise of the Point-and-Click Botnet (Zeus 1)
2010-02-24: N.Y. Firm Faces Bankruptcy from $164,000 E-Banking Loss (Zeus 1)
2010-03-01: The “Kneber” Botnet, Spear Phishing Attacks and Crimeware (Zeus 1)
2010-03-01: ZeuS: A Persistent Criminal Enterprise (Zeus 1)
2010-03-10: Dozens of ZeuS Botnets Knocked Offline (Zeus 1)
2010-03-10: Massive Drop in Number of Active Zeus C&C Servers (Zeus 1)
2010-03-10: ZeuS Banking Trojan Report (Zeus 1)
2010-03-11: ZeuS botnet code keeps getting better…for criminals (Zeus 1)
2010-04-01: SpyEye vs. ZeuS Rivalry (Zeus 1)
2010-04-06: Business-savvy cybercriminals work to improve their image (Zeus 1)
2010-04-12: ZeuS on the Hunt (Zeus 1)
2010-05-02: Config Decryptor for ZeuS 2.0 (Unnamed 6)
2010-05-03: A Brief Look at Zeus/Zbot 2.0 (Zeus 2)
2010-06-15: Clash of the Titans: ZeuS v SpyEye (Zeus 1)
2010-07-28: BigBoss Check Counterfeiting Ring (Prg)
2010-07-30: The “Mumba” Botnet Disclosed (Zeus 2)
2010-08-06: Teenagers accused of running cybercrime ring (Zeus 1)
2010-08-07: On the Analysis of the Zeus Botnet Crimeware Toolkit (Zeus 1)
2010-08-10: Cybercriminals Target Online Banking Customers (Zeus 2)
2010-08-13: "I possibly wont be back for a while..." (Zeus 1)
2010-09-07: ZeuS: El eslabón perdido (Zeus 1)
2010-09-11: Digging Deeper on the TechCrunch Zbot (Zeus 1)
2010-09-20: Zeus Crimeware Toolkit (Zeus 1)
2010-09-25: ZeuS Mitmo: Man-in-the-mobile (I) (ZITMO)
2010-09-25: ZeuS Mitmo: Man-in-the-mobile (II) (ZITMO)
2010-09-25: ZeuS Mitmo: Man-in-the-mobile (III) (ZITMO)
2010-09-27: Turning the Tables – Part I (Zeus 1)
2010-09-27: Zeus In The Mobile (Zitmo): Online Banking’s Two Factor Authentication Defeated (ZITMO)
2010-09-28: Zitmo Follow Up: From Spyware to Malware (ZITMO)
2010-09-29: 19 Arrested in Multi-Million Dollar ZeuS Heists (Zeus 1)
2010-09-29: British Raid Nabs 19 Suspects in $9 Million Online Bank Heist (Zeus 1)
2010-09-29: Hi-tech crime police quiz 19 people over internet bank scam that netted hackers up to £20m from British accounts (Zeus 1)
2010-09-29: Major Zeus Bust in the UK: Nineteen Zbot Thieves Arrested (Zeus 1)
2010-09-30: 11 Charged In ZeuS & Money Mule Ring (Zeus 1)
2010-09-30: 11 people charged following E-Crime Unit investigation (Zeus 1, Zeus 2)
2010-09-30: Feds hit Zeus group, but the brains remain overseas (Zeus 1)
2010-09-30: Manhattan U.S. Attorney Charges 37 Defendants Involved in Global Bank Fraud Schemes that Used “Zeus Trojan” and Other Malware to Steal Millions of Dollars from U.S. Bank Accounts (Zeus 1, Zeus 2)
2010-09-30: New York FBI: 17 Wanted Zeus Criminals (Zeus 1, Zeus 2)
2010-09-30: U.S. Charges 37 Alleged Money Mules (Zeus 1)
2010-09-30: U.S. Charges 37 Alleged Mules and Others in Online Bank Fraud Scheme (Zeus 1)
2010-10-01: 5 Key Players Nabbed in Ukraine in $70-Million Bank Fraud Ring (Zeus 1)
2010-10-01: Accounts Raided in Global Bank Hack (Zeus 1)
2010-10-01: Cyber Banking Fraud: Global Partnerships Lead to Major Arrests (Zeus 1, Zeus 2)
2010-10-01: FBI's Operation ACHing Mule (Zeus 1, Zeus 2)
2010-10-01: International Cooperation Disrupts Multi-Country Cyber Theft Ring (Zeus 1, Zeus 2)
2010-10-01: Operation Trident BreACH News Briefing (Zeus 1, Zeus 2)
2010-10-01: Risky Business #170 -- The week of Zeus! (Zeus 1, ZITMO)
2010-10-02: Ukraine Detains 5 Individuals Tied to $70 Million in U.S. eBanking Heists (Zeus 1)
2010-10-09: Win32.Murofet: what day is today? (Murofet)
2010-10-13: XyliBox Mazafaka leak: Zeus (Zeus 2)
2010-10-13: XyliBox Mazafaka leak: Zeus (Google Translation) (Zeus 2)
2010-10-14: Murofet: Domain Generation ala Conficker (Murofet)
2010-10-17: The Plot Thickens for ZeuS-LICAT (Murofet)
2010-10-18: Global Phishing Survey: Trends and Domain Name Use in 1H2010 (Zeus 1)
2010-10-24: SpyEye v. ZeuS Rivalry Ends in Quiet Merger (Zeus 2)
2010-10-27: File-Patching ZBOT VariantsZeuS 2.0 Levels Up (Murofet)
2010-10-28: Some thoughts and facts about ZeuS MitMo (ZITMO)
2010-11-05: Minipost: NY Zeus "At Large" Codreanu and Adam captured (Zeus 1, Zeus 2)
2010-11-05: Two suspected ZBot mules arrested in Wisconsin (Ice IX, Zeus 1, Zeus 2)
2010-11-08: Authorities Nab More ZeuS-Related Money Mules (Zeus 1)
2010-11-08: Looking Back at Murofet, a ZeuSbot Variant’s Active History (Murofet)
2010-11-10: Zeus 2.1 – Stronger & More Secure, But Will Fraudsters Upgrade? (Zeus 2)
2010-11-26: Schoolboy Hackers steal $18 Million (£12 Million pounds) (Zeus 1)
2010-12-02: Updated ZeuS-LICAT Variant Spotted (Murofet)
2010-12-21: The Bozvanovna ZeuS Botnet (Zeus 2)
2011-01-14: Combined Zeus/SpyEye Toolkit Announced (Zeus 2)
2011-01-20: Battling the Zbot Threat (Zeus 1)
2011-01-24: Bogus Ad for Zeus-SpyEye Hybrid Trojan published in Underground Forum (Zeus 2)
2011-01-24: SpyEye/ZeuS Toolkit v1.3.05 Beta (Zeus 2)
2011-01-31: A Fresh New Hydra Head (Zeus 2)
2011-02-03: Revisiting the SpyEye/ZeuS Merger (Zeus 2)
2011-02-04: ZeuS Source Code for Sale. Got $100,000? (Zeus 2)
2011-02-08: New SpyEye Gains Zeus Features – A Detailed Analysis of SpyEye Trojan v1.3 (Zeus 2)
2011-02-21: ZeuS straszy polskie banki (ING i mBank) (ZITMO)
2011-02-25: ZeuS in the Mobile is back (ZITMO)
2011-03-02: Teenagers jailed for running £16m internet crime forum (Zeus 1)
2011-03-04: ZeuS lives! (Zeus 2)
2011-03-09: SpyEye, ZeuS Users Target Tracker Sites (Zeus 2)
2011-03-23: ZeuS/Zbot source code for sale? (Zeus 2)
2011-03-31: ZeuS Source Code Already in the Wild (Zeus 2)
2011-05-01: Zeus Malware: Threat Banking Industry (Zeus 1)
2011-05-09: Complete ZeuS sourcecode has been leaked to the masses (Zeus 2)
2011-05-10: Fraud News Flash – The Downfall of the Mighty – Zeus Trojan’s Source Code Leaked and Now Available Everywhere (Zeus 2)
2011-05-11: Fingerprinting the author of the ZeuS Botnet (Zeus 2)
2011-05-12: What is Zeus? (Murofet, Zeus 1, Zeus 2)
2011-05-13: 2.0.8.9 Source Code (Zeus 2)
2011-05-13: Professional Online Criminals (Zeus 1)
2011-05-16: Overview: Inside the Zeus Trojan’s source code (Zeus 2)
2011-05-18: Darkode Repository: The Leaker of ZEUS Code (Zeus 2)
2011-08-06: Ice - IX botnet (Ice IX)
2011-08-24: Hybrid Hydras and Green Stealing Machines (Ice IX, Zeus 2)
2011-08-24: Ice IX, the first crimeware based on the leaked ZeuS sources (Ice IX)
2011-08-25: Ice IX Bot (Ice IX)
2011-08-25: Ice IX – Or Just ZeuS? (Ice IX)
2011-08-25: Ice – IX, the Zeus banking trojan succesor ? (Ice IX)
2011-08-28: Meet Ice IX, Son Of ZeuS (Ice IX)
2011-09-01: The New Frontier For Zeus & SpyEye (Murofet, Zeus 2)
2011-09-14: Ice IX: not cool at all (Ice IX)
2011-09-23: Nikolay Garifulin Pleads Guilty in Manhattan Federal Court to Involvement in Global Bank Fraud Scheme that Used “Zeus Trojan” to Steal Millions of Dollars from U.S. Bank Accounts (Zeus 1, Zeus 2)
2011-09-25: Abstract Memory Analysis: Zeus Encryption Keys (Zeus 1, Zeus 2)
2011-09-29: Organized Cybercrime: Nefarious Sophistication Featuring Zeus V2.1.0.10 (Murofet)
2011-09-30: Zeus Trojan Update - new variants based on leaked zeus source code (Ice IX, Zeus 2)
2011-10-04: Criminal network who targetted internet bank customers convicted (Zeus 1, Zeus 2)
2011-10-04: ZeuS Trojan Gang Faces Justice (Zeus 1)
2011-10-06: ZeuS-in-the-Mobile – Facts and Theories (ZITMO)
2011-10-10: ZeuS Gets More Sophisticated Using P2P Techniques (Gameover)
2011-10-11: P2P Version of Zeus Botnet Appears (Gameover)
2011-10-16: Another Modified ZeuS Variant Seen in the Wild (Gameover)
2011-10-20: New IceIx (Zeus variant) changes its encryption method (again) (Ice IX)
2011-11-01: Men jailed following E-Crime investigation (Zeus 1, Zeus 2)
2011-11-01: Trojan gang leaders jailed (Zeus 1)
2011-11-06: Zeus Code Update Part 2 – Who is behind the recent changes? (Gameover, Ice IX, ZeusAES)
2011-11-21: Murofet v2.0 (ZeuS P2P) (Gameover)
2011-11-23: FBI Denver Cyber Squad Advises Citizens to be Aware of a New Phishing Campaign (Gameover)
2011-11-28: Cracking into the New P2P Variant of Zeusbot/Spyeye (Gameover)
2011-12-28: Suo Anteeksi: Polite Variant of ZeuS (Unnamed 10)
2012-01-04: ZeuS – P2P+DGA variant – mapping out and understanding the threat (Gameover)
2012-01-23: ‘Citadel’ Trojan Touts Trouble-Ticket System (Citadel)
2012-01-28: Citadel Zeus bot (Citadel)
2012-02-01: Malware Redirects Bank Phone Calls to Attackers (Ice IX)
2012-02-08: Citadel - An Open-Source Malware Project (Citadel)
2012-02-09: Collaboration Fuels Rapid Growth of Citadel Trojan (Citadel)
2012-02-13: Darkode Repository: Citadel 1.1 - FF_IE_Chrome Grabber + Video Recording & C (Citadel)
2012-02-13: SpyEye being kicked to the curb by its customers? (Ice IX)
2012-02-17: Zeus Trojan Author Ran With Spam Kingpins (Zeus 1, Zeus 2)
2012-02-22: Zeusbot/Spyeye P2P Updated, Fortifying the Botnet (Gameover)
2012-03-01: DGAs and Cyber-Criminals: A Case Study (Gameover)
2012-03-12: Citadel : le fichier de configuration (Citadel)
2012-03-19: Citadel 1.3 (Citadel)
2012-03-23: Another Cyber Fraud Defendant Charged in Operation Aching Mules Sentenced in Manhattan Federal Court (Zeus 1, Zeus 2)
2012-03-24: Zeus Legal Notice (Ice IX, Zeus 2)
2012-03-25: Microsoft and Financial Services Industry Leaders Target Cybercriminal Operations from Zeus Botnets (Ice IX, Zeus 2)
2012-03-26: A Busy Week for Cybercrime Justice (Zeus 1)
2012-03-26: Microsoft Seizes ZeuS Servers in Anti-Botnet Rampage (Zeus 2)
2012-03-26: MicrosoftDCU, FS-ISAC, and NACHA vs. Zeus (Zeus 2)
2012-03-28: Thoughts on the Microsoft’s “Operation b71” (Zeus botnet civil legal action) (Ice IX, Zeus 1, Zeus 2)
2012-04-03: Update to Citadel : v1.3.3.5 (Citadel)
2012-04-12: Critical analysis of Microsoft Operation B71 (Ice IX, Zeus 1, Zeus 2)
2012-04-16: Microsoft Responds to Critics Over Botnet Bruhaha (Zeus 2)
2012-05-04: Microsoft to Botmasters: Abandon Your Inboxes (Zeus 2)
2012-05-21: ZeuS Ransomware Feature: win_unlock (Unnamed 5)
2012-06-06: https://www.reddit.com/user/throwaway236236/comments/ (Skynet)
2012-06-07: Titans’ revenge: detecting Zeus via its own flaws (Zeus 2)
2012-06-11: Update to Citadel : v.1.3.4.5 (Citadel)
2012-06-17: Automating Online Banking FraudAutomatic Transfer System: The Latest Cybercrime Toolkit Feature (Zeus 2)
2012-06-25: Dissecting Operation High Roller (Zeus 2)
2012-06-26: Double-Protected Bank Clients Tricked by $78M Crimeware Scam (Zeus 2)
2012-06-28: Cambios en Citadel: AntiVM y cifrado (Citadel)
2012-07-02: HURRY! CITADEL IS GOING OFF THE OPEN MARKET! (Citadel, Ice IX)
2012-07-03: Microsoft Names Two Alleged Zeus Botnet Operators (Zeus 2)
2012-07-03: Relentless Zbot and Anti-emulations (Zeus 2)
2012-07-23: The Lifecycle of Peer-to-Peer (Gameover) ZeuS (Gameover)
2012-07-29: Inside Citadel 1.3.4.5 C&C & Builder - Botnet Control Panel (Citadel)
2012-08-01: Inside the ICE IX bot, descendent of Zeus (Ice IX)
2012-08-01: JABBERZEUS SUBJECTS (Zeus 2)
2012-08-07: New ZitMo for Android and Blackberry (ZITMO)
2012-08-11: Citadel (Citadel)
2012-09-14: Citadel Trojan Malware Analysis (Citadel)
2012-09-25: ZeuS Gameover Overview (Gameover)
2012-10-04: Update to Citadel : 1.3.5.1 Rain Edition. (Citadel)
2012-10-17: Citadel 1.3.5.1 Rain Edition (Citadel)
2012-10-18: Citadel V1.3.5.1: Enter the Fort’s Dungeons (Citadel)
2012-11-05: Citadel: a cyber-criminal’s ultimate weapon? (Citadel)
2012-11-15: Darkode Repository: ICE9 Builder 1.2.6 (Ice IX)
2012-11-28: A Case Study of Eurograbber: How 36 Million Euros was Stolen via Malware (ZITMO)
2012-11-28: Updates to the Citadel Trojan (Citadel)
2012-12-05: The Citadel crimeware kit – under the microscope (Citadel)
2012-12-06: Skynet, a Tor-powered botnet straight from Reddit (Skynet)
2012-12-07: Troyan Citadel BackConnect VNC Server Manager (Citadel)
2012-12-11: Citadel’s Steward Banned from Underground Venues (Citadel)
2012-12-14: Malware Analysis: Citadel (Citadel)
2013-01-10: Police Arrest Alleged ZeuS Botmaster “bx1” (Zeus 2)
2013-01-11: Demystifying Pobelka (Citadel)
2013-01-17: Mihai Paunescu Indictment (Zeus 2)
2013-01-21: IceIX/Zeus Red/Zeus (Ice IX, Zeus 2)
2013-02-20: Inside the World of the Citadel Trojan (Citadel)
2013-04-16: Takedown of the plitfi Citadel botnet (Citadel)
2013-05-03: Alleged 'SpyEye' Botmaster Ends Up in America, Handcuffs (Zeus 2)
2013-05-03: Alleged SpyEye Seller ‘Bx1’ Extradited to U.S. (Zeus 2)
2013-06-01: ZeuS-P2P monitoring and analysis (Gameover)
2013-06-05: Citadel botnet Legal Notice (Citadel)
2013-06-07: Collateral Damage: Microsoft Hits Security Researchers along with Citadel (Citadel)
2013-06-14: Citadel lawsuit and explanation of John Doe 25 (Citadel)
2013-06-28: Citadel hasn't gone (Citadel)
2013-07-23: KINS Banking Trojan a Successor to Citadel? (KINS)
2013-07-23: New Trojan #INTH3WILD: Is Cybercrime Ready to Crown a New “KINS”? (KINS)
2013-07-25: Analysis of the KINS malware (KINS)
2013-08-22: ZeuS: Porque no todo es bancario (Tasks)
2013-09-01: Zeus-R-uS (Citadel, Ice IX, KINS, Murofet, PowerZeus, Skynet, Tasks, Unnamed 5, Zeus 1, Zeus 2)
2013-09-30: Having a look on the KINS Toolkit (PowerZeus)
2013-10-04: Upatre: Another Day Another Downloader (Gameover)
2013-10-10: MMD-0007-2013 - KINS? No! PowerZeuS, yes! Source Code for View & Download (PowerZeus)
2013-10-18: A PowerZeus Incident Case Study (PowerZeus)
2013-10-22: Highly Resilient Peer-to-Peer Botnets Are Here: An Analysis of Gameover Zeus (Gameover)
2013-11-11: Ice 419 (Ice IX)
2013-12-01: Analysis of Ice IX (Ice IX)
2013-12-05: @skynetbnet (Skynet)
2013-12-05: Infamous Skynet Botnet Author Allegedly Arrested (Skynet)
2013-12-11: The Inevitable Move – 64-bit ZeuS Enhanced With Tor (Unnamed 8)
2014-01-07: 64-bit ZBOT Leverages Tor, Improves Evasion Techniques (Unnamed 8)
2014-02-12: Email Attack on Vendor Set Up Breach at Target (Citadel)
2014-02-15: Citadel "involution" (Citadel)
2014-02-17: Hiding in plain sight: a story about a sneaky banking Trojan (KINS)
2014-02-18: Fight Against Citadel in Japan (Citadel)
2014-02-18: Me puppet master: Behind the scenes of crawling P2P botnets (Gameover)
2014-02-19: A new Zeus variant targeting Salesforce.com – Research and Analysis (Zeus 2)
2014-02-27: Notorious “Gameover” malware gets itself a kernel-mode rootkit… (Gameover)
2014-03-04: Zeus 1.1.3.4 (ZeusX)
2014-03-09: Analysis of ZeuS GameOver with Necurs (Gameover)
2014-03-14: Top Banking Botnets of 2013 (Citadel, Gameover, Ice IX, Zeus 2)
2014-04-11: Nine Charged in Conspiracy to Steal Millions of Dollars Using “Zeus” Malware (Zeus 2)
2014-04-12: Zeus Criminals charged in Omaha, Nebraska (Zeus 2)
2014-04-27: Crimeware based Targeted Attacks: Citadel case, Part III (Citadel)
2014-05-22: Meet the Zberp Trojan (KINS)
2014-05-22: Why Them? Extracting Intelligence about Target Selection from Zeus Financial Malware (Zeus 2)
2014-06-02: Alert (TA14-150A) GameOver Zeus P2P Malware (Gameover)
2014-06-02: Assistant Attorney General Leslie R. Caldwell Delivers Remarks for the Gameover Zeus and Cryptolocker Operations and Related Criminal Charges (Gameover)
2014-06-02: Deputy Attorney General James Cole Delivers Remarks at Press Conference for Gameover Zeus and Cryptolocker Operations (Gameover)
2014-06-02: FBI disrupts GameOver ZeuS and CryptoLocker Botnet (Gameover, Murofet)
2014-06-02: Is the Game Over for GameOver Zeus? (Gameover)
2014-06-02: Remarks by Robert Anderson Executive Assistant Director Federal Bureau of Investigation (Gameover)
2014-06-02: U.S. Leads Multi-National Action Against “Gameover Zeus” Botnet and “Cryptolocker” Ransomware, Charges Botnet Administrator (Gameover)
2014-06-02: ‘Operation Tovar’ Targets ‘Gameover’ ZeuS Botnet, CryptoLocker Scourge (Gameover)
2014-06-03: The GameOver Zeus/CryptoLocker Indictment (Gameover)
2014-06-03: To Catch a Cyberthief: How the FBI foiled the dangerous malwares GameOver Zeus and Cryptolocker. (Gameover)
2014-06-06: McAfee Labs Threat Advisory: PWS ZBot (Gameover, Zeus 1, Zeus 2, ZITMO)
2014-06-08: Gameover Zeus & Cryptolocker (Gameover)
2014-06-08: Shadowserver Gameover Zeus DGA HTTP (20140530) (Gameover)
2014-06-09: Backstage with the Gameover Botnet Hijackers (Gameover)
2014-06-09: ZeuS.Maple Variant Targets Canadian Online Banking Customers (VMZeus)
2014-07-07: Zeus PIF - The evolving strain looking to defeat your security software (KINS)
2014-07-10: Breaking: GameOver Zeus Mutates, Launches Attacks (Gameover)
2014-07-10: Crooks Seek Revival of ‘Gameover Zeus’ Botnet (Gameover)
2014-07-11: Gameover Zeus re-emerges without peer-to-peer capability (Gameover)
2014-07-11: New GameOver Zeus Variant uses FastFlux C&C (Gameover)
2014-08-06: Gameover Zeus Variants Targeting Ukraine, US (Gameover)
2014-08-08: Code Name: "tarbuka" - UK bank customers targeted by Zeus variant (Grabbot)
2014-08-18: The Zeus botnet and the making of a cyber crime market (Citadel, Gameover, KINS)
2014-11-21: U.S. v Vyacheslav Penchukov et.al. (Murofet)
2014-12-05: ZeuS meets VM (Citadel, Ice IX, KINS, PowerZeus, VMZeus, Zeus 2)
2014-12-18: Chthonic: a new modification of ZeuS (Chthonic)
2015-01-01: I am selling Zeus0verTor (Sphinx)
2015-01-12: sphinx in action (Sphinx)
2015-02-24: 1.0.2.0 Source Code (PowerZeus)
2015-02-25: FBI: $3M Bounty for ZeuS Trojan Author (Gameover, Zeus 2)
2015-04-01: A New Word Document Exploit Kit (Chthonic)
2015-04-15: Authorship analysis of the Zeus botnet source code (Zeus 2)
2015-06-18: The Hunt for the Financial Industry's Most-Wanted Hacker (Gameover, Zeus 1, Zeus 2)
2015-06-25: Major cybercrime ring dismantled by joint investigation team (Zeus 2)
2015-07-05: MMD-0036-2015 - KINS (or ZeusVM) v2.0.0.0 tookit (builder & panel source code) leaked. (KINS)
2015-08-05: FBI 'Most Wanted' Cybercrime Kingpin Linked To Russian Espionage On US Government (Gameover)
2015-08-05: GameOver Zeus – Backgrounds on the Badguys and the Backends (Gameover)
2015-08-05: Gameover Zeus -- Bad Guys and Backends (Gameover)
2015-08-05: Inside the $100M ‘Business Club’ Crime Gang (Gameover)
2015-08-26: Sphinx, a new variant of Zeus available for sale in the underground (Sphinx)
2015-08-31: Advertisement (Sphinx)
2015-09-02: FBI og Kripos pågrep russer i Fredrikstad (Citadel)
2015-09-06: Citadel 1.1 - FF/IE/Chrome Grabber/Video Recording, AntiTracker Protection & CRM (Citadel)
2015-09-07: Arrests Tied to Citadel, Dridex Malware (Citadel)
2015-09-29: Russian Developer of the Notorious “Citadel” Malware Sentenced to Prison (Citadel)
2015-10-02: UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks (Sphinx)
2015-10-07: Deputy Attorney General Press Conference for Gameover Zeus and Cryptolocker Operations (Gameover)
2015-12-29: GameOver Zeus: Badguys And Backends (Gameover, Murofet)
2016-02-08: Report: Dyre Crackdown in Moscow (Zeus 1, Zeus 2)
2016-02-19: Banking Trojan “Citadel” Returns (Citadel)
2016-02-19: Citadel 0.0.1.1 (Atmos) (Citadel)
2016-02-21: Advertisement (Sphinx)
2016-03-02: Hamza Bendelladj Sentencing Memorandum (Ice IX, Zeus 2)
2016-04-07: Unraveling ZeuS.Maple’s Stealth Loader (VMZeus)
2016-04-11: Security Alert: Citadel Trojan Resurfaces as Atmos, builds on ZeuS Legacy (Citadel)
2016-04-20: Panda Banker: New Banking Trojan Hits the Market (Pandabanker)
2016-06-07: LinkedIn information used to spread banking malware in the Netherlands (Pandabanker)
2016-06-07: MMD-0054-2016 - ATMOS botnet facts you should know (Citadel)
2016-06-21: The Curious Case of an Unknown Trojan Targeting German-Speaking Users (Zloader)
2016-07-13: Zeus Panda Begins Targeting EU, NA Banks, Uses Web-Injections and ATS (Pandabanker)
2016-07-26: Threat Actors Using Legitimate PayPal Accounts To Distribute Chthonic Banking Trojan (Chthonic)
2016-07-26: Zeus Panda Delivered By Sundown - Targets UK Banks (Pandabanker)
2016-07-27: Who Let the Pandas Out? Zeus, Zeus, Zeus, Zeus (Pandabanker)
2016-08-04: Panda Is One Hungry Bear! A Heavyweight Banking Trojan Rolls Into Brazil (Pandabanker)
2016-08-12: Bad News Bears - Panda Banker Starts Looking More Like a Grizzly (Pandabanker)
2016-08-16: Brazil Can’t Catch a Break: After Panda Comes the ~~Sphinx~~Zloader (Zloader)
2016-09-22: Zeus Delivered by DELoader to Defraud Customers of Canadian Banks (Zloader)
2016-10-03: Multi-Purpose “Floki Bot” Emerges as New Malware Kit (Flokibot)
2016-10-31: Floki Bot – A Zeus Wannabe with Delusions of Grandeur? (Flokibot)
2016-11-10: Floki Bot and the stealthy dropper (Flokibot)
2016-11-21: FlokiBot: A Flock of Bots? (Flokibot)
2016-12-07: Flashpoint and Talos Analyze the Curious Case of the flokibot Connector (Flokibot)
2016-12-07: Floki Bot Strikes, Talos and Flashpoint Respond (Flokibot)
2016-12-12: Floki Bot: Funny Name, Financial Nightmare? (Flokibot)
2016-12-29: FACT SHEET: Actions in Response to Russian Malicious Cyber Activity and Harassment (Gameover, Murofet, Prg, Zeus 1, Zeus 2)
2017-01-19: New Satan Ransomware available through a Ransomware as a Service. (Satan)
2017-01-26: 2.0.9.4 Source Code (Evolution)
2017-01-26: Around the World With ~~Zeus Sphinx~~Zloader: From Canada to Australia and Back (Zloader)
2017-01-26: Zbot with legitimate applications on board (Zloader)
2017-01-30: Flokibot Invades PoS: Trouble in Brazil (Flokibot)
2017-02-06: Threat Spotlight: Satan RaaS (Satan)
2017-02-18: Hancitor/Pony malspam (Zloader)
2017-02-28: Documents and Resources from the Gameover Zeus / Cryptolocker Press Conference (Gameover)
2017-03-12: Russian Espionage Piggybacks on a Cybercriminal’s Hacking (Gameover)
2017-03-14: Analyzing and Deobfuscating FlokiBot Banking Trojan (Flokibot)
2017-03-14: Russian Hacker “Kolypto” Extradited from Norway (Citadel)
2017-03-17: Grabbot is Back to Nab Your Data (Grabbot)
2017-03-21: Inside the Hunt for Russia’s Most Notorious Hacker (Gameover, Zeus 2)
2017-04-18: Configuring Zeus: A case study of online crime target selection and knowledge transmission (Citadel, Gameover, Zeus 1, Zeus 2)
2017-05-15: Evolution of the GOLD EVERGREEN Threat Group (Gameover, Murofet, Zeus 2)
2017-06-06: Chthonic Trojan is back in nation-state cyberattack against Ukraine (Chthonic)
2017-06-22: Analysis Results of Zeus.Variant.Panda (Pandabanker)
2017-07-19: Russian Citizen who Helped Develop the "Citadel" Malware Toolkit is Sentenced (Citadel)
2017-07-25: How a Citadel Trojan Developer Got Busted (Citadel)
2017-11-02: Poisoning the Well: Banking Trojan Targets Google Search Results (Pandabanker)
2017-11-16: Terdot: Zeus-based malware strikes back with a blast from the past (Zloader)
2017-12-14: Zeus Panda Banking Trojan Targets Online Holiday Shoppers (Pandabanker)
2017-12-28: Panda Banker hits Italy – Analysis Part 1 (Pandabanker)
2017-12-28: PandaZeuS’s Christmas Gift: Change in the Encryption scheme (Pandabanker)
2018-01-04: Panda Banker hits Italy – Analysis Part 2 (Pandabanker)
2018-03-27: Panda Banker Zeros in on Japanese Targets (Pandabanker)
2018-05-09: Panda Malware Broadens Targets to Cryptocurrency Exchanges and Social Media (Pandabanker)
2018-06-02: 0.0.1.1 (Atmos) Panel and Builder (Citadel)
2018-06-02: 3.0 Panel (Pandabanker)
2018-06-02: AXE Bot 1.4.1 Panel (Silent Night)
2018-07-13: ~~Upatre~~Chthonic Continued to Evolve with new Anti-Analysis Techniques (Chthonic)
2018-07-24: Recent Emotet activity (Pandabanker)
2018-08-10: 1.0.3.2 Advertisement (Sphinx)
2018-08-19: Let's Learn: Dissecting Panda Banker & Modules: Webinject, Grabber & Keylogger DLL Modules (Pandabanker)
2018-09-06: Dissecting DEloader malware with obfuscation (Zloader)
2018-10-09: Threat Spotlight: Panda Banker Trojan Targets the US, Canada and Japan (Pandabanker)
2018-11-28: The $100 Million Bot Heist: The story of the world’s most-wanted cybercriminal. (Gameover)
2018-12-04: Thomas Kennedy McCormick (Fubar) Indictment (Zeus 2)
2018-12-29: Panda Banker hits Italy – Analysis Part 3 (Pandabanker)
2019-04-21: The growing partnership between Russia's government and cybercriminals (Gameover)
2019-06-07: https://twitter.com/benkow_/status/1136983062699487232 (Action)
2019-07-01: Exposing Evgeniy Mikhaylovich Bogachev and the "Jabber ZeuS" Gang - An OSINT Analysis (Gameover, Murofet, Zeus 1, Zeus 2)
2019-08-19: Thomas Kennedy McCormick (Fubar) FBI Interview (Citadel, Ice IX, Zeus 1)
2019-10-01: Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany (Zeus 2)
2019-10-03: The Bagsu banker case (Action)
2019-11-14: Maksim Viktorovich Yakubets Criminal Complaint (Murofet)
2019-11-18: Why Were the Russians So Set Against This Hacker Being Extradited? (Gameover)
2019-12-16: Inside ‘Evil Corp,’ a $100M Cybercrime Menace (Gameover)
2019-12-18: Citadel (Zeus clone) (Citadel)
2019-12-18: Panda Banker (Zeus clone) (Pandabanker)
2019-12-18: Win32/Chthonic (Zeus + Andromeda combined) (Chthonic)
2019-12-18: Win32/Zeus (alias Zbot) (Zeus 2)
2019-12-18: Zeus Gameover (Gameover)
2019-12-18: ZeusVM (Zeus clone) (KINS, VMZeus)
2019-12-18: win.chthonic (Chthonic)
2019-12-18: win.citadel (Citadel)
2019-12-18: win.floki_bot (Flokibot)
2019-12-18: win.gameover_dga (Gameover)
2019-12-18: win.gameover_p2p (Gameover)
2019-12-18: win.grabbot (Grabbot)
2019-12-18: win.ice_ix (Ice IX)
2019-12-18: win.kins (VMZeus)
2019-12-18: win.murofet (Murofet)
2019-12-18: win.pandabanker (Pandabanker)
2019-12-18: win.vmzeus (KINS)
2019-12-18: win.zeus (Zeus 1, Zeus 2)
2019-12-18: win.zeus_action (Action)
2019-12-18: win.zeus_sphinx (Sphinx)
2019-12-18: win.zloader (Silent Night, Zloader)
2020-01-01: 1.0.8.0 Login (Silent Night)
2020-01-01: 1.0.8.0 Russian Manual (Silent Night)
2020-01-01: 2.1.0.1 Login (Zeus 2)
2020-01-01: 2.1.0.1 Panel (Zeus 2)
2020-01-25: EVGENIY MIKHAILOVICH BOGACHEV (Gameover, Zeus 1, Zeus 2)
2020-01-25: Gameover ZeuS (Gameover)
2020-01-26: Zeus (malware) (Zeus 1, Zeus 2)
2020-02-25: Operation Tovar (Gameover)
2020-03-30: ~~Zeus Sphinx~~Zloader 2 Trojan Awakens Amidst Coronavirus Spam Frenzy (Silent Night)
2020-04-19: 1.1.22.0 Install (Silent Night)
2020-04-19: 1.1.22.0 Login (Silent Night)
2020-04-26: The DGA of Zloader (Silent Night)
2020-05-11: ~~Zeus Sphinx~~Zloader 2 Back in Business: Some Core Modifications Arise (Silent Night)
2020-05-21: The “Silent Night” Zloader/Zbot (Silent Night)
2020-05-21: ZLoader Loads Again: New ZLoader Variant Returns (Silent Night)
2020-05-24: Zloader String Obfuscation (Silent Night)
2020-06-11: API Hashing in the Zloader malware (Silent Night)
2020-07-17: The malware Dridex: origins and uses (Gameover)
2020-08-06: 1.1.2.2 Google Translated Manual (Zeus 1)
2020-08-11: 1.4.28.0 Install (Silent Night)
2020-10-04: 1.5.28.0 Install (Silent Night)
2020-10-25: 1.6.28.0 Install (Silent Night)
2020-10-29: The Assassin Squad: Zbot and RYUK (Silent Night)
2020-11-06: Analysis report: Beware of banking malware "Zloader" that runs behind Emotet (Silent Night)
2020-11-16: Malsmoke operators abandon exploit kits in favor of social engineering scheme (Silent Night)
2021-01-04: Stopping Serial Killer: Catching the Next Strike (Gameover, Murofet)
2021-02-14: 1.7.x.x Install (unconfirmed) (Silent Night)
2021-03-29: Zloader email campaign using MHTML to download and decrypt XLS (Silent Night)
2021-04-15: 20$ Bounty on Bogachev (Gameover, Zeus 1, Zeus 2)
2021-04-20: Relation between multiple malvertisement methods of Zloader malware (Silent Night)
2021-05-07: Four Individuals Plead Guilty to RICO Conspiracy Involving “Bulletproof Hosting” for Cybercriminals (Citadel, Zeus 2)
2021-05-14: From ZLoader to DarkSide: A Ransomware Story (Silent Night)
2021-06-08: The blurry boundaries between nation-state actors and the cybercrime underground (Gameover)
2021-06-29: Virus:Win32/Murofet.A (Murofet)
2021-06-29: Zeus v4 (Unnamed 5)
2021-07-08: Inside the FBI, Russia, and Ukraine’s failed cybercrime investigation (Gameover, Zeus 2)
2021-07-21: The life and death of the ZeuS Trojan (Zeus 1, Zeus 2)
2021-10-18: Zloader Reversing (Silent Night)
2021-10-20: Two Individuals Sentenced for Providing “Bulletproof Hosting” for Cybercriminals (Citadel, Zeus 2)
2022-02-22: EP 111: ZeuS (Gameover, Prg, Zeus 1, Zeus 2)
2022-04-13: Dismantling ZLoader: How malicious ads led to disabled security tools and ransomware (Silent Night)
2022-04-13: ESET takes part in global operation to disrupt Zloader botnets (Silent Night)
2022-04-13: Microsoft ZLoader (Silent Night)
2022-04-13: Notorious cybercrime gang’s botnet disrupted (Silent Night)
2022-04-14: Zloader 2: The Silent Night (Silent Night)
2022-04-22: thecrimewarearchive/zeusvm-v2.0.0.0 (KINS)
2022-04-25: A Deep Dive into Zloader - the Silent Night (Silent Night)
2022-05-07: Into The Silent Night (Silent Night)
2022-11-15: Top Zeus Botnet Suspect “Tank” Arrested in Geneva (Zeus 2)
2022-12-11: The non-mythological story of Zeus #botnet (Citadel, Flokibot, Gameover, Pandabanker, Sphinx, Zeus 1, Zeus 2, Zloader)
2023-02-09: U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group (Gameover)
2023-04-26: Gootloader Unloaded: Researchers Launch Multi-Pronged Offensive Against Gootloader, Cutting Off Traffic to Thousands of Gootloader Web Pages and Using the Operator’s Very Own Tactics to Protect End-Users (Gameover)
2023-06-12: Romanian National Who Operated “Bulletproof Hosting” Service That Facilitated The Distribution Of Destructive Malware Sentenced To Three Years In Prison (Zeus 2)
2023-06-13: Bulletproof hoster gets 3 years for pushing Ursnif, Zeus malware (Zeus 2)
2023-12-08: Jabber Zeus (Zeus 2)
2024-01-07: Introduction To VM Protection - VMZeus (VMZeus)
2024-01-19: Zloader: No Longer Silent in the Night (Silent Night)
2024-02-15: "Tank" Plea Agreement (Zeus 2)
2024-02-15: Foreign National Pleads Guilty to Role in Cybercrime Schemes Involving Tens of Millions of Dollars in Losses (Zeus 1, Zeus 2)
2024-03-01: "Tank" Change of Plea (Zeus 2)
2024-04-29: Zloader Learns Old Tricks (Silent Night)
2024-07-11: Notorious Hacker Kingpin ‘Tank’ Is Finally Going to Prison (Zeus 2)
2024-07-29: UNC4393 Goes Gently into the SILENTNIGHT (Silent Night)
2024-12-04: Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware (Silent Night)
2024-12-10: Inside Zloader’s Latest Trick: DNS Tunneling (Silent Night)
2025-09-22: Technical Analysis of Zloader Updates (Silent Night)
2025-10-20: BBC Audio | Cyber Hack | Evil Corp | 1. Zeus (Zeus 2)
2025-10-20: BBC Audio | Cyber Hack | Evil Corp | 2. Into the storm (Zeus 2)
2025-10-27: BBC Audio | Cyber Hack | Evil Corp | 3. Agents on the doorstep (Zeus 2)
2025-11-02: Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody (Zeus 2)
2025-11-02: leprechaun lite (Zeus 2)
2025-11-03: BBC Audio | Cyber Hack | Evil Corp | 4. The insider (Zeus 2)

curator@zeusmuseum.com