Kronos (5b42af8e-8fdc-11e8-bf48-f32ff64d5502)
Kronos was a type of banking malware first reported in 2014. It was sold for $7000. As of September 2015, a renew version was reconnecting with infected bots and sending them a brand new configuration file against U.K. banks and one bank in India. Similar to Zeus it was focused on stealing banking login credentials from browser sessions. A new version of this malware appears to have been used in 2018, the main difference is that the 2018 edition uses Tor-hosted C&C control panels.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Kronos (5b42af8e-8fdc-11e8-bf48-f32ff64d5502) | Banker | Kronos (62a7c823-9af0-44ee-ac05-8765806d2a17) | Malpedia | 1 |