Improvements to Zeus

Zeus's development is active these days. Below is a table of release dates for each version:

2008/12/20 -
2008/12/30 -
2009/03/11 -
2009/03/28 -
2009/04/02 -

This change log entry states that during HTTP communication of the Trojan with the C&C server the User-Agent used will be that of system's Internet Explorer. Before, it was a constant string embedded in the binary, which could have raised suspicion or blocked by ISPs.

No comments: