Highly resilient peer-to-peer botnets are here: An analysis of Gameover Zeus

2013 8th International Conference on Malicious and Unwanted Software: "The Americas" (MALWARE) Pub Date : 1900-01-01 DOI:10.1109/MALWARE.2013.6703693
Dennis Andriesse, C. Rossow, Brett Stone-Gross, D. Plohmann, H. Bos
{"title":"Highly resilient peer-to-peer botnets are here: An analysis of Gameover Zeus","authors":"Dennis Andriesse, C. Rossow, Brett Stone-Gross, D. Plohmann, H. Bos","doi":"10.1109/MALWARE.2013.6703693","DOIUrl":null,"url":null,"abstract":"Zeus is a family of credential-stealing trojans which originally appeared in 2007. The first two variants of Zeus are based on centralized command servers. These command servers are now routinely tracked and blocked by the security community. In an apparent effort to withstand these routine countermeasures, the second version of Zeus was forked into a peer-to-peer variant in September 2011. Compared to earlier versions of Zeus, this peer-to-peer variant is fundamentally more difficult to disable. Through a detailed analysis of this new Zeus variant, we demonstrate the high resilience of state of the art peer-to-peer botnets in general, and of peer-to-peer Zeus in particular.","PeriodicalId":325281,"journal":{"name":"2013 8th International Conference on Malicious and Unwanted Software: \"The Americas\" (MALWARE)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"111","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 8th International Conference on Malicious and Unwanted Software: \"The Americas\" (MALWARE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MALWARE.2013.6703693","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 111

Abstract

Zeus is a family of credential-stealing trojans which originally appeared in 2007. The first two variants of Zeus are based on centralized command servers. These command servers are now routinely tracked and blocked by the security community. In an apparent effort to withstand these routine countermeasures, the second version of Zeus was forked into a peer-to-peer variant in September 2011. Compared to earlier versions of Zeus, this peer-to-peer variant is fundamentally more difficult to disable. Through a detailed analysis of this new Zeus variant, we demonstrate the high resilience of state of the art peer-to-peer botnets in general, and of peer-to-peer Zeus in particular.
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
高度弹性的点对点僵尸网络在这里:Gameover Zeus的分析
Zeus是一个窃取凭证的木马家族,最早出现于2007年。Zeus的前两个变体基于集中式命令服务器。这些命令服务器现在经常被安全社区跟踪和阻止。为了抵御这些常规的对抗措施,Zeus的第二个版本在2011年9月被分叉成一个点对点的变种。与早期版本的Zeus相比,这种点对点变体从根本上来说更难以禁用。通过对这种新的Zeus变体的详细分析,我们展示了最先进的点对点僵尸网络的高弹性,特别是点对点Zeus。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
2013 8th International Conference on Malicious and Unwanted Software:
2013 8th International Conference on Malicious and Unwanted Software: "The Americas" (MALWARE)
自引率
0.00%
发文量
0
期刊最新文献
Heuristic malware detection via basic block comparison Static malware detection with Segmented Sandboxing Noninvasive detection of anti-forensic malware PANDORA applies non-deterministic obfuscation randomly to Android An antivirus API for Android malware recognition
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1