P2P ZeuS

P2P ZeuS is a closed-source fork of the leaked version of the ZeuS botnet. It presents improvements over the leaked version, including a peer-to-peer architecture. [1]

ID: S0016
Associated Software: Peer-to-Peer ZeuS, Gameover ZeuS
Type: MALWARE
Platforms: Windows
Version: 1.1
Created: 31 May 2017
Last Modified: 30 March 2020

Techniques Used

Domain ID Name Use
Enterprise T1001 .001 Data Obfuscation: Junk Data

P2P ZeuS added junk data to outgoing UDP packets to peer implants.[1]

References