First step in cross-platform Trojan bankers from Brazil done
Jump to navigation
Jump to search
(Publication) Google search: [1]
First step in cross-platform Trojan bankers from Brazil done | |
---|---|
Botnet | |
Malware | |
Botnet/malware group | |
Exploit kits | |
Services | |
Feature | |
Distribution vector | Banloader |
Target | |
Origin | Brazil |
Campaign | |
Operation/Working group | |
Vulnerability | |
CCProtocol | |
Date | 2016 / 2016-03-03 |
Editor/Conference | Kaspersky Securelist |
Link | https://securelist.com/blog/research/74051/first-step-in-cross-platform-trojan-bankers-from-brazil-done/ (Archive copy) |
Author | Dmitry Bestuzhev |
Type | Blogpost |
Abstract
“ Brazilian cybercriminals have been “competing” with their Russian-speaking “colleagues” for a while in who makes more Trojan bankers and whose are most effective. A few days ago we found a new wave of different campaigns spreading the initial “Banloader” components in Jar (Java archive), which is very particular by its nature – it’s able to run on Linux, OS X, and of course Windows. Actually, it’s also able to run under certain circumstances even on mobile devices.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2016BFR4824, editor = {Kaspersky Securelist}, author = {Dmitry Bestuzhev}, title = {First step in cross-platform Trojan bankers from Brazil done}, date = {03}, month = Mar, year = {2016}, howpublished = {\url{https://securelist.com/blog/research/74051/first-step-in-cross-platform-trojan-bankers-from-brazil-done/}}, }