The worst of Zeus and Carberp has been combined into a hybrid banking Trojan known as ‘Zberp.’
A hybrid Trojan monster dubbed ‘Zberp’ is setting its sights on 450 financial institutions world wide.
The new virus has features from both its parents, combining to create a threat to be reckoned with. Features include the ability to “gather information about infected computers including their IP addresses and names; take screen shots and upload them to a remote server; steal FTP and POP3 credentials, SSL certificates and information inputted into Web forms; hijack browsing sessions and insert rogue content into opened websites, and initiate rogue remote desktop connections using the VNC and RDP protocols.”
Just like Zeus, Zberp evades anti-malware scanner detection through embedded configuration updates within an image of the Apple logo. From Carberp, the new Trojan inherited the ability hooking techniques used to control browsers.
Trusteer researchers Martin Korman and Tal Darsan commented on their blog, “Since the source code of the Carberp Trojan was leaked to the public, we had a theory that it won’t take cybercriminals too long to combine the Carberp source code with the Zeus code and create an evil monster.”
Original article by Lucian Constantin.
Read the full story here.