Sale Offer of Zeus Source Code Reported

vAccording to CSIS a security company based in Denmark, a cyber-criminal is using online forums for promoting a supposed source code he claims to be of the infamous Trojan namely Zeus.

Wrote Peter Kruse of CSIS on the company's blog, a number of people tried to convince that they were owners of Zeus' source code. Though CSIS couldn't confirm any of these assertions, it stated that someone, nicknamed '100,' managed in appending their declaration with a screenshot which supported their assertion. Theinquirer.net reported this in news on March 24, 2011.

Actually, the prospective trader with the handle 100 makes the offer appear real by attaching screenshots of the supposed Zeus source code to the bidding of his sale. He suggests talking about the deal in detail to would-be purchasers through ICQ alternatively Jabber. He's also ready for taking payment through whatever escrow service the buyer may choose. The screenshots he presents cite peinfector.cpp, a Zeus scheme called "Murofet.". And although security researchers haven't managed at confirming if the sale of 100's code is authentic, they're considering his sale presentation with seriousness. Theregister.co.uk published this on March 23, 2011.

Furthermore, Kruse wrote that while CSIS couldn't confirm any of the assertions, it was certain that somebody other than the Zeus writer had the code's access. Theinquirer.net published this.

Besides, '100' tells a would-be purchaser that the most recent Zeus bot's source code is available for sale at a very low price, adding that he doesn't sell containers. Accompanied with this message, '100' provides "SCREENSHOT FOR THE LULZ" as well as posts seeming graphic depicting portions of the claimed source code.

In the meantime, according to the security researchers, Zeus forever hits the headlines. In 2010 late, a large number of gangsters got detained in Ukraine, the UK and US for allegedly intercepting the Trojan for theft of $70m out of bank accounts.

In fact, some 50 suspected phishing mules across UK and US were held partially responsible for the operation. More importantly, 5 suspected Ukrainians were cuffed over allegedly regulating the entire scheme. And still nobody knows who Zeus' real author is.

Related article: Sale of Hacking Toolkits Enable Novices to Enter Cybercrime

» SPAMfighter News - 4/5/2011