- Joined
- Jun 28, 2020
- Messages
- 6,777
- Reaction score
- 726
- Points
- 212
- Awards
- 2
Alright so i have decided to write a little about bank bots, aka botnets, like the commonly known ones as spyeye, zeus, citadel, ice 9 etc.
I will explain you their basic functions, what they are used for, and what you'll need to keep and maintain your own botnet. Its basically written for starters who're interested in this field.
What are these botnets used for?
They are used for many different purposes like gathering private details, logins to websites, credit card information, bank logins, paypal accounts etc.
If you can use a simple keylogger or any other RAT with keylogging function, why specifically go for botnet?
Thats because of the function called webinjecting. By injecting the browser's API, the botnet is then able to edit the original website the victim is viewing and show what you want the victim to see.
For example, you have zeus with chase webinject on it, and when your victim visits the bank's address www.chase.com, and enters his account login info (user id and password), a pop-up is displayed, blackening the background, asking for additional information like dob, ssn, cc details, etc as per your like.
What all is needed for running a botnet and maintaining it?
First of, you need a bulletproof VPS (shared or dedicated) or a fastflux server and a domain, recommended registration in offshore countries.
And depending on which botnet you choose, you'll need crypting. 1 crypt costs around $1 to $10 for each crypt. And you'll be needing to crypt every once in a while, for like a botnet with 10k bots, and you're running spyeye, I would recommend crypting your bin and updating it every 3-4 days, so that your bots don't die aka their AV detects your spyeye and removes it etc. But now new botnets like citadel have auto-crypting function, where it crypts the bin on its own and stays undetected. This way you save money on crypting.
A decent list of updated, working webinjects. You'll need this to gather additional and full information from the account logins of the banks or websites you want. So if you're looking after wells fargo and chase bank logins, you need to get webinjects for chase and wells fargo banks.
Will write more on 2nd post as when I have time, and images will be added. Any questions regarding botnet (of any type like spyeye, zeus, citadel) you can ask me here and I'll try my best to give you support.
I will explain you their basic functions, what they are used for, and what you'll need to keep and maintain your own botnet. Its basically written for starters who're interested in this field.
What are these botnets used for?
They are used for many different purposes like gathering private details, logins to websites, credit card information, bank logins, paypal accounts etc.
If you can use a simple keylogger or any other RAT with keylogging function, why specifically go for botnet?
Thats because of the function called webinjecting. By injecting the browser's API, the botnet is then able to edit the original website the victim is viewing and show what you want the victim to see.
For example, you have zeus with chase webinject on it, and when your victim visits the bank's address www.chase.com, and enters his account login info (user id and password), a pop-up is displayed, blackening the background, asking for additional information like dob, ssn, cc details, etc as per your like.
What all is needed for running a botnet and maintaining it?
First of, you need a bulletproof VPS (shared or dedicated) or a fastflux server and a domain, recommended registration in offshore countries.
And depending on which botnet you choose, you'll need crypting. 1 crypt costs around $1 to $10 for each crypt. And you'll be needing to crypt every once in a while, for like a botnet with 10k bots, and you're running spyeye, I would recommend crypting your bin and updating it every 3-4 days, so that your bots don't die aka their AV detects your spyeye and removes it etc. But now new botnets like citadel have auto-crypting function, where it crypts the bin on its own and stays undetected. This way you save money on crypting.
A decent list of updated, working webinjects. You'll need this to gather additional and full information from the account logins of the banks or websites you want. So if you're looking after wells fargo and chase bank logins, you need to get webinjects for chase and wells fargo banks.
Will write more on 2nd post as when I have time, and images will be added. Any questions regarding botnet (of any type like spyeye, zeus, citadel) you can ask me here and I'll try my best to give you support.