Difference between revisions of "Prinimalka"

From Botnets.fr
Jump to navigation Jump to search
m (1 revision imported)
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
{{Botnet
{{Botnet
|Introduction=Basé sur [[variant of::Gozi]]. Lien possible avec [[sibling::Dorifel]]
|Alias=Ursnif,
09f75a3fcaeb2c46dd67b666a109d844
|Parent=Gozi,
c89e960e0155bd9c78889b415de82f55
|Sibling=Dorifel,
a8bc29c5ae35a634adbe63d43a2efaab
e4065c9aa45afc54003ca2d7ae6f15f1
ca54385bb345f20454ec0cd1f01ca9f9
|Fonctionnalités=* [[feature::SOCKS]] proxy
|UserAgent=Unknown
|CCProtocol=Unknown
|Target=Microsoft Windows
|Target=Microsoft Windows
|Status=Unknown
|Checksum=09f75a3fcaeb2c46dd67b666a109d844, c89e960e0155bd9c78889b415de82f55, a8bc29c5ae35a634adbe63d43a2efaab, e4065c9aa45afc54003ca2d7ae6f15f1, ca54385bb345f20454ec0cd1f01ca9f9,
|BeginYear=2008
|BeginYear=2008
|EndYear=Unknown
|Group=Banking
|Group=Banking
|Vector=
|Fonctionnalités=* [[feature::SOCKS]] proxy
|Exploitkit2=
|Exploitkit2=
|Exploitkit3=
|Exploitkit3=

Latest revision as of 17:45, 20 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

Prinimalka
Alias Ursnif
Group Banking
Parent Gozi
Sibling Dorifel
Family
Relations Variants:

Sibling of:
Parent of: Neverquest
Distribution of:
Campaigns:

Target Microsoft Windows
Origin
Distribution vector
UserAgent
CCProtocol
Activity 2008 /
Status
Language
Programming language
Operation/Working group

Introduction

Features

Associated images

Checksums / AV databases




Publications

 AuthorEditorYear
Cyber gang seeks botmasters to wage massive wave of trojan attacks against U.S. banksMor AhuviaRSA2012
Probing the Gozi-Prinimalka campaignIvan MacalintalTrend Micro2012
Trojan.Prinimalka: bits and piecesDennis SchwarzArbor Networks2012
Vawtrak gains momentum and expands targetsDon JacksonPhishLabs2014
‘Project Blitzkrieg’ promises more aggressive cyberheists against U.S. banksBrian KrebsBrian Krebs2012
Retrieved from "https://www.botnets.fr/index.php?title=Prinimalka&oldid=12802"