Difference between revisions of "Relentless Zbot and anti-emulations"
Jump to navigation
Jump to search
m (1 revision imported) |
m (Text replacement - " www.symantec.com" to "") |
||
| Line 5: | Line 5: | ||
|Licence= | |Licence= | ||
|Video= | |Video= | ||
|Link=http://www.symantec.com/connect/blogs/relentless-zbot-and-anti-emulations | |Link=http://www.symantec.com/connect/blogs/relentless-zbot-and-anti-emulations | ||
|Author=Anoirel Issa, | |Author=Anoirel Issa, | ||
|NomRevue=Symantec Connect Community | |NomRevue=Symantec Connect Community | ||
Latest revision as of 21:51, 5 August 2015
(Publication) Google search: [1]
| Relentless Zbot and anti-emulations | |
|---|---|
| |
| Botnet | ZeuS |
| Malware | Zbot |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2012 / 03 Jul 2012 |
| Editor/Conference | Symantec |
| Link | http://www.symantec.com/connect/blogs/relentless-zbot-and-anti-emulations (Archive copy) |
| Author | Anoirel Issa |
| Type | |
Abstract
“ A couple of months ago, Microsoft took out some Trojan.Zbot servers across the world. The impact was short-lived. Even though for a span of about two weeks, we saw virtually no Trojan.Zbot activity, relentless Trojan.Zbot activity has resumed—with some added new social-engineering techniques as well as some new techniques to help Trojan.Zbot avoid antivirus detection.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2012BFR1064,
editor = {Symantec},
author = {Anoirel Issa},
title = {Relentless Zbot and anti-emulations},
date = {03},
month = Jul,
year = {2012},
howpublished = {\url{http://www.symantec.com/connect/blogs/relentless-zbot-and-anti-emulations}},
}