http://{BLOCKED}linker.net/temperdata/sdg12s.bin
2013年9月10日
&苍产蝉辫;ブロック日时: 2013年8月10日 5:09:00 GMT-8
&苍产蝉辫;评価: 高
&苍产蝉辫;ドメイン名: misterlinker.net
&苍产蝉辫;カテゴリ: Disease Vector
概要 :
TSPY_ZBOT.THX connects to this URL to download its configuration file. This is the live casino online detection for KINS Trojan, dubbed as the next ZeuS by media reports. Similar to ZeuS/ZBOT, it downloads configuration file and steals online banking credentials. However, it uses a different packer and has anti-debugging and anti-analysis routines.