One of the most well known banking Trojans, Carberp, has had its source code offered on underground forums for as much as $50,000, leading to concerns the malware will see a spike in activity.
When the Zeus malware code was released in 2011, variants proliferated and one of the most prevalent Trojans became even more troublesome.
On an underground Russian forum, security company Trusteer found a seller going by the name of “=Sj=”, who offered the code and use of the malware to a “trustworthy member”for $50,000.
The seller also claimed his Carberp came with Master Boot Record (MBR) rootkit functionality, meaning it could give cyber crooks low level access to victims’ operating systems and avoid anti-virus software. They also said it would work on all Windows operating systems.
“Members of different forums are apparently also attempting to sell the source code at a significantly lower price,” wrote Etay Maor, senior manager at Trusteer. “One assumption that has been made is that a breach of contract by a Carberp seller caused a buyer to take revenge and sell the source code.”
There has been turmoil in the Carberp community recently, as the leader of a Carberp gang was arrested in April, along with another 20 who were alleged to have created the malware. They followed the arrest of another crook accused of running a major Carberp operation last year.
“With the current feature set this malware offers, it can easily be configured to target a wide variety of businesses as well as be used for data theft and reconnaissance,” Maor added.
“It remains to be seen if we are witnessing an attempt to dilute this malware due to internal struggles within the Carberp or buyer groups.
“Another possibility is that the source code will be acquired and enhanced to create a new malware product that will then be sold to the underground fraud community.”
Are you a security expert? Try our quiz!
After relocating from California to Texas in 2020, Oracle's Larry Ellison now reveals plan to…
Share price hit after Meta admits heavy AI spending plans, after posting strong first quarter…
For third time Google delays phase-out of third-party Chrome cookies after pushback from industry and…
Elon Musk firm touts cheaper EV models, as profits slump over 50 percent in the…
Bad news for Tim Cook, as Counterpoint records 19 percent fall in iPhone sales in…
TikTok pledges to challenge 'unconstitutional' US ban in the courts, after President Joe Biden signs…
View Comments
Guess the crooks need to buy their software from a reliable source.....