Kronos (malware)

Kronos was a type of banking malware first reported in 2014. It was sold for $7000.

As of September 2015, a renew version was reconnecting with infected bots and sending them a brand new configuration file against U.K. banks and one bank in India.^[1]

Similar to Zeus^[2] it was focused on stealing banking login credentials from browser sessions.^[3]

In August 2017, British security researcher Marcus Hutchins (aka 'Malwaretech') notable for his involvement stopping the May 2017 WannaCry ransomware attack^[4] was arrested by the FBI whilst visiting the United States.^[5] He was alleged to have created the software in 2014, and to have sold it in 2015 via the AlphaBay forums.^[6][7]

References

1. UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks https://securityintelligence.com/uk-banks-hit-with-new-zeus-sphinx-variant-and-renewed-kronos-banking-trojan-attacks/
2. Overview of the Kronos banking malware rootkit https://www.lexsi.com/securityhub/overview-kronos-banking-malware-rootkit/?lang=en
3. Constantin, Lucian (14 July 2014). "New banking malware 'Kronos' advertised on underground forums". Retrieved 4 August 2017.
4. Gibbs, Samuel (22 May 2017). "WannaCry hackers still trying to revive attack says accidental hero". The Guardian. Retrieved 22 May 2017.
5. McGoogan, Cara (4 August 2017). "WannaCry hero Marcus Hutchins could face 40 years in US prison". Retrieved 4 August 2017.
6. "Indictment". Retrieved 4 August 2017.
7. Kerr, Orin (3 August 2017). "The Kronos indictment: Is it a crime to create and sell malware?". Retrieved 4 August 2017.