Stealer Distributed via Crafted Minecraft Source Pack
Essential information
- Published
- 08/05/2024 11:09
- Modified
- 08/05/2024 17:24
- Tags
- 2024-05-03 2024-05-04 2024-05-05 2024-05-06 2024-05-07 2024-05-08 anti-analysis minecraft persistence screenshots stealer zeus panda
- Related entities
- 23 observables, 1 intrusion sets (apt), 20 techniques (mitre), 1 malware
Description
This report details the operation of the zEus stealer malware, which is distributed through a crafted Minecraft source pack. The malware collects sensitive information from victims' systems, including login credentials, browser data, and cryptocurrency wallets. It employs anti-analysis techniques and drops various script files to maintain persistence, disable security tools, and establish command-and-control communication. The report emphasizes the risks associated with downloading unverified files and the importance of enabling multi-factor authentication and threat intelligence services.