Zeus, the leader of the IcedID malware faces 40 years in prison

• Panchukov’s plea will be seen as the latest major victory for US law enforcement in the fight against cybercrime and its enablers.
• The FBI and others dismantled Zeus in 2014 after claiming that one of its variants, Gameover Zeus, had infected as many as 1 million PCS worldwide and caused more than $100 million in damage.

A Ukrainian cybercrime kingpin is facing 40 years in prison after spending nearly a decade on the FBI’s most wanted online list.
Vyacheslaw Igorevich Panchukov, 37, pleaded guilty this week in the United States to two charges related to his leadership role in the Zeus and IcedID malware operations, in the process reaped millions of dollars in profits.

A decade-long story

However, it took authorities a long time to handcuff him. Penchukov was involved in the Zeus banking Trojan as early as May 2009, but was not arrested until a decade later in 2022 in Geneva, Switzerland.
Zeus’ primary goal is to recruit machines into its botnet and act as banking trojans to steal various information used for financial fraud, such as bank account information, passwords, and PINS.
“Penchukov and his co-conspirators then misrepresented to the bank that they were employees of the victim and were authorized to transfer money from the victim’s bank account, causing the bank to make unauthorized transfers from the victim’s account and causing the victim to lose millions of dollars,” the Justice Department said on Thursday.
“The enterprise used residents in the United States and elsewhere as’ money mules’ to receive wire transfers from victims’ bank accounts into their own bank accounts, which were then withdrawn by those victims and sent overseas to accounts controlled by Penchukhov’s co-conspirators.”
The FBI and others dismantled Zeus in 2014 after claiming that one of its variants, Gameover Zeus, infected up to 1 million PCS worldwide and caused more than $100 million in damage.

Also read: Hackers never seem to be satisfied with cryptocurrency theft!

Source development version of the iteration

Like many other major malware, Zeus has had a variety of different versions and iterations based on its source code.For example, SpyEye RAT was developed as a successor to Zeus and is equipped with many additional features such as keylogging and card-stealing capabilities, all of which are designed to facilitate financial fraud. Back in 2016, the United States arrested two North Korean leaders who have now served eight years of 24-year prison sentences.
Panchukov, also known as Vyacheslav Igoravich Andreev or sometimes as “The Tank,” his role in Operation Zeus landed him on the FBI’s Most wanted online list, an honor that did little to stop him from continuing as usual.
“Malware like IcedID costs the U.S. economy billions of dollars and puts our critical infrastructure and national security at risk,” said Michael Easley, U.S. Attorney for the Eastern District of North Carolina.