Botnet

GameOver Zeus

First seen: 2011 • Status: disrupted

Disrupted by Law Enforcement

GameOver Zeus was an advanced bank-robbing program that worked with early ransomware until the FBI took it down.

Overview

GameOver Zeus was a P2P variant of Zeus banking trojan that distributed CryptoLocker ransomware. An FBI-led operation disrupted it in 2014.

Also Known As

GOZ, P2PZeus, Peer-to-peer Zeus

How It Spreads

  • Spam campaigns
  • Exploit kits
  • Cutwail botnet distribution

What It Does

  • Banking fraud
  • Wire transfer theft
  • CryptoLocker distribution
  • P2P botnet communications

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Historical threat - use for research
  • Monitor for Zeus variant indicators
  • Check for P2P C2 patterns

MITRE ATT&CK Techniques

T1566, T1185, T1071, T1486

If You're Infected

  1. 1.

    Disrupted in 2014 - mainly historical reference

  2. 2.

    Standard Zeus cleanup procedures apply

Related Malware

Zeus, Cryptolocker, Cutwail

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices