Configuring Zeus: A case study of online crime target selection and knowledge transmission
eCrime Researchers Summit, eCrime
MetadataShow full item record
Hutchings, A., & Clayton, R. Configuring Zeus: A case study of online crime target selection and knowledge transmission. eCrime Researchers Summit, eCrime https://doi.org/10.17863/CAM.10134
Abstract—Zeus is a well-known and effective family of ‘man-in-the-browser’ malware. This qualitative case study analyses posts in online cybercrime forums that discuss Zeus configuration. Online cybercriminals were found to share, sell, steal, and trade configuration files. The discussions and advertisements on the forums, which span four years, were found to evolve with market conditions and externalities, including Zeus being offered as a subscription service. The release of tools to decrypt configuration files by security researchers was also closely followed on the forums, and assisted offenders when it came to stealing configuration files from others.
This work was supported by the Department of Homeland Security (DHS) Science and Technology Directorate, Cyber Security Division (DHSS&T/CSD) Broad Agency Announce- ment 11.02, the Government of Australia and SPAWAR Systems Center Pacific [contract number N66001-13-C-0131] (to 30 September 2016); and the UK Engineering and Physical Sciences Research Council (EPSRC) [grant EP/M020320/1] for the University of Cambridge, Cambridge Cybercrime Centre (from 1 October 2016).
This record's DOI: https://doi.org/10.17863/CAM.10134
This record's URL: https://www.repository.cam.ac.uk/handle/1810/264568