S0016 P2P ZeuS
P2P ZeuS is a closed-source fork of the leaked version of the ZeuS botnet. It presents improvements over the leaked version, including a peer-to-peer architecture. 1
| Item | Value |
|---|---|
| ID | S0016 |
| Associated Names | |
| Type | MALWARE |
| Version | 1.1 |
| Created | 31 May 2017 |
| Last Modified | 30 March 2020 |
| Navigation Layer | View In ATT&CK® Navigator |
Techniques Used
| Domain | ID | Name | Use |
|---|---|---|---|
| enterprise | T1001 | Data Obfuscation | - |
| enterprise | T1001.001 | Junk Data | P2P ZeuS added junk data to outgoing UDP packets to peer implants.1 |