Análisis realizado por : Jerowin Santillan

 Fecha/hora de bloqueo de la URL miércoles, 4 de septiembre de 2013 11:01:00 GMT-8
 Clasificación: : High
 Dominio : ocsxxxmmj.com
 Categoría: Disease Vector
 Descripción:

TSPY_ZBOT.THX connects to this URL to download its configuration file. This is the Trend Micro detection for KINS Trojan, dubbed as the next ZeuS by media reports. Similar to ZeuS/ZBOT, it downloads configuration file and steals online banking credentials. However, it uses a different packer and has anti-debugging and anti-analysis routines.

Sobre el malware