Zeus/SpyEye Merger Promises More Sophisticated Bots

ID THREATPOST:3299A72ED60118ECE5510C4393E4B453
Type threatpost
Reporter Brian Donohue
Modified 2013-04-17T20:09:43


Zeus SpyeyeThe recent merger of the Zeus and SpyEye botnets has created a mega-botnet that promises to increase the effectiveness, complexity, and prevalence of malware across the Web, according to a blog post by Francois Paget of McAfee Labs.

The SpyEye/ZS Toolkit v1.4.1, the first evidence of a long-rumored merger between the two, competing botnet platforms, appears to have been released on January 11. According to Paget it is available for purchase on the black market and is likely to have already started generating money for its owners.

The new tool’s capabilities include: brute force password guessing, jabber notification, a VNC (remote control) module, auto-spreading and auto-update capabilities and a new screenshot system.

A stripped down version of the tool is available for $400, Paget reports. The more extensive, all-inclusive variant is selling on underground forums for $800. Paget suggests the prices are low compared to pre-release “chatter” that had priced the merged toolkit at $4000.

McAfee recommends that users maintain updates on their systems to stay abreast of such threats.