Watch out would be bank robbers, there is now a new crook on the loose. No, it’s not a person but a new malware source code. It is way different than the credential stealing trojan malware that is currently known in the banking industry as “Zeus”. The name of the new bank robber is “Pandemiya” and this bank robber trojan malware source code started from scratch and does not use any of the source code from Zeus, which is the case for most other malware source code targeted at banks and financial institutions. The creative minds behind this new type of bank robber must have had some time on their hands. The developer or team of developers spent an entire year developing the line of Trojan malware code for Pandemiya.
The Pandemiya Trojan is more than twenty-five thousand (25,000) lines of original C coding language. The code has been broken down, and it uses a modular design, which is currently unlike the other types of banking Trojan malware codes such as “Citadel”, “ICE IX”, and “Carberp” banking trojan malware to name a few. These types of banking Trojan malware have been used for stealing on-line banking user’s credentials for some time now. The modular design of the malware source code makes it more flexible and desirable to would be bank robbers to work with and to implement.
The banking Trojan malware such as Zeus and Pandemiya have been both known for injecting fake elements into web sites, capturing screenshots of user’s credentials and encrypting the communications that it sends back and forth to its botmaster, which is in control of its CnC servers or command and controls systems for obtaining the victim’s desired credentials. Unfortunately, this software is being made available to hackers that are willing to use the trojan malware source at a cost between $1500.00 and $2000.00. Let’s hope they get caught downloading such code.