TY - GEN
T1 - Taming Zeus by leveraging its own crypto internals
AU - Riccardi, Marco
AU - Di Pietro, Roberto
AU - Vila, Jorge Aguila
N1 - Generated from Scopus record by KAUST IRTS on 2023-09-20
PY - 2011/12/1
Y1 - 2011/12/1
N2 - Malware is one of the main threats to the Internet security in general, and to commercial transactions in particular. However, malware detection and containment tools and techniques still call for effective and efficient solutions. In this paper, we address a specific, dreadful, and widely diffused financial malware: Zeus. The contributions of this paper are manifold: first, we propose a general methodology to break the encrypted malware communications; second, we provide a proof of concept of such a methodology by applying it to the production environment. Further, we show how our proposal can be implemented to detect and contain the Zeus threat. Finally, we provide lesson learning highlighting some general principles that underly malware in general (and Zeus in particular). © 2011 IEEE.
AB - Malware is one of the main threats to the Internet security in general, and to commercial transactions in particular. However, malware detection and containment tools and techniques still call for effective and efficient solutions. In this paper, we address a specific, dreadful, and widely diffused financial malware: Zeus. The contributions of this paper are manifold: first, we propose a general methodology to break the encrypted malware communications; second, we provide a proof of concept of such a methodology by applying it to the production environment. Further, we show how our proposal can be implemented to detect and contain the Zeus threat. Finally, we provide lesson learning highlighting some general principles that underly malware in general (and Zeus in particular). © 2011 IEEE.
UR - http://ieeexplore.ieee.org/document/6151981/
UR - http://www.scopus.com/inward/record.url?scp=84858717480&partnerID=8YFLogxK
U2 - 10.1109/eCrime.2011.6151981
DO - 10.1109/eCrime.2011.6151981
M3 - Conference contribution
SN - 9781457713392
BT - eCrime Researchers Summit, eCrime
ER -