Suspicious#Zbot is a Trojan horse that attempts to steal confidential banking information from the compromised computer. It may also download configuration files and updates from the Internet. It is spread mainly through drive-by downloads and phishing schemes. Zbot is also called as Zeus.
File Related Changes
It drops the following file(s) on the system:
Process Related Changes
It creates the following mutex(es):
- "rsldps"
- "_FISIDISI223122348_"
- "C611803001CDCF2800000CEC2"
Network Activity
It attempts to connect to the following remote servers: |
