Trojan

Zeus/Zbot

First seen: 2007-01 • Status: active

Currently Active Threat

Zeus is the grandfather of banking malware. It steals your online banking credentials and has been around since 2007. Many modern malware families are based on Zeus.

Overview

Zeus is one of the most infamous banking trojans in history. Its source code was leaked in 2011, spawning numerous variants still active today.

Also Known As

Zbot, Zeus Trojan, ZeuS

How It Spreads

  • Phishing emails
  • Drive-by downloads
  • Exploit kits

What It Does

  • Steals banking credentials
  • Performs man-in-browser attacks
  • Logs keystrokes
  • Steals form data

Is your business exposed?

Target Platforms

Windows 7, Windows 10, Windows 11

Detection Tips

  • Monitor for browser process injection
  • Watch for keylogging behavior

MITRE ATT&CK Techniques

T1056, T1185, T1555

If You're Infected

  1. 1.

    Contact your bank immediately

  2. 2.

    Change all banking credentials

  3. 3.

    Reimage infected system

Related Malware

Dridex, Trickbot, Emotet

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices