Lucene search
K

16 matches found

Securelist
Securelist
added 2021/10/19 10:0 a.m.38 views

Trickbot module descriptions

Trickbot aka TrickLoader or Trickster, is a successor of the Dyre banking Trojan that was active from 2014 to 2016 and performed man-in-the-browser attacks in order to steal banking credentials. Trickbot was first discovered in October 2016. Just like Dyre, its main functionality was initially th...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2020/03/02 5:14 p.m.45 views

TrickBot Adds ActiveX Control, Hides Dropper in Images

The TrickBot banking trojan has gotten trickier, with the addition of a Windows 10 ActiveX control to execute malicious macros in boobytrapped documents. Michael Gorelik, researcher at Morphisec Labs, said that at least two dozen documents have come to light in the last few weeks that use ActiveX...

0.7AI score
Exploits0References9
ThreatPost
ThreatPost
added 2017/07/21 1:50 p.m.15 views

Trickbot Trojan Malware Morphs, Now Targets U.S. Banks

The Trickbot banking Trojan is now targeting U.S. banks in new spam campaigns fueled by the prolific Necurs botnet. The malware has grown more potent with the introduction of a customized redirection method as part of its attacks. IBM X-Force and Flashpoint both recently spotted new Trickbot...

Exploits0References4
ThreatPost
ThreatPost
added 2016/11/08 5:16 p.m.10 views

TrickBot Banking Trojan Adds New Browser Manipulation Tools

The TrickBot banking Trojan, a close relative to Dyre, has a growing target list and new browser manipulation techniques, experts at IBM X-Force said. “We expect to see it amplify infection campaigns and fraud attacks, sharpen its aim on business and corporate accounts,” wrote Limor Kessem,...

0.1AI score
Exploits0References5
ThreatPost
ThreatPost
added 2016/10/17 4:30 p.m.7 views

TrickBot Banking Trojan Could Be Dyre Rewrite

Despite the fact that the criminals allegedly behind the creation and distribution of the Dyre banking Trojan are in a Russian jail, a new piece of malware in the wild has enough similarities to Dyre that researchers are wondering whether there’s a connection. The new malware is called TrickBot a...

0.2AI score
Exploits0References3
The Hacker News
The Hacker News
added 2016/02/08 12:55 a.m.14 views

Hackers behind Dyre Malware Busted in Police Raid

The world's most notorious financial hacking operation disrupted by Russian authorities in November, when they raided the offices associated with a Moscow-based film and production company named 25th Floor. According to the Russian authorities, 25th Floor was allegedly involved in distributing th...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2016/01/20 11:0 a.m.9 views

Dridex Adopting Dyre Tactics, Targeting U.K. Banks

Attackers behind the Dridex Trojan have narrowed their sights on banks based in the United Kingdom frequented by high-value business accounts, researchers claim. When a new version of the Trojan was released two weeks ago, it was promptly followed by a series of infection campaigns that focused o...

6.9AI score
Exploits0References4
myhack58
myhack58
added 2015/12/23 12:0 a.m.12 views

Windows kernel vulnerability MS15-0 1 0/CVE-2 0 1 5-0 0 5 7 analysis and use with the EXP-a vulnerability warning-the black bar safety net

Description Back in 2 0 1 5 early Udi Yavo1found that one affects Windows XP to Windows 1 0previewof the Windows kernel vulnerability, the following two article on the CVE-2 0 1 5-0 0 5 7 analysis of the article, we can refer to one of the two: 1. FireEye described some technical details about th...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2015/09/15 1:20 p.m.10 views

CoreBot Adds New Capabilities, Transitions to Banking Trojan

As researchers expected it would, CoreBot, the credential-stealing malware that surfaced last month, has added a bevy of new capabilities and reinvented itself as a robust banking Trojan. Researchers said the malware shares more similarities with Dyre, another high profile banking Trojan, than a...

7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2015/07/22 2:54 p.m.10 views

Bartalex Variants Spotted Dropping Pony, Dyre Malware

Some strains of Bartalex malware, a macro-based malware that first surfaced earlier this year, have recently been spotted dropping Pony loader malware and the Dyre banking Trojan. Primarily spread through spam, the first iterations of Bartalex were observed in late March embedded in Microsoft Wor...

2.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2015/05/01 9:48 a.m.5 views

Dyre Banking Trojan Avoids Sandbox Detection

A number of unidentified commercial and freely available sandboxes fail to detect a new version of the Dyre banking Trojan, which was recently blamed for more than $1 million in losses to financial institutions and enterprises. The new strain of Dyre, also known as Dyreza, uses a fairly new...

Exploits0References3
ThreatPost
ThreatPost
added 2015/04/13 2:56 p.m.11 views

Cybersecurity Vulnerabilities Identified in Banking Vendors

In hopes of bolstering security, banks in New York over the next several weeks want to enact new regulations for any third party vendors they do business with. A report released last week pointed out that one in three N.Y. banks don’t require their vendors to notify them in the event they...

0.7AI score
Exploits0References3
The Hacker News
The Hacker News
added 2015/04/03 9:35 p.m.12 views

Dyre Wolf Banking Malware Stole More Than $1 Million

Security researchers have uncovered an active cyber attack campaign that has successfully stolen more than $1 Million from a variety of targeted enterprise organizations using spear phishing emails, malware and social engineering tricks. The campaign, dubbed "The Dyre Wolf" by researchers from...

6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2015/04/03 10:12 a.m.46 views

IBM Outs Dyre Wolf Campaign Steals $1 Million

The Dyre banking Trojan‘s ascension to the top of the financial malware food chain took a massive leap forward in the first three months of 2015. Already spreading a damaging piece of malware that targets corporate bank accounts, the Eastern European keepers of Dyre recently upped their social...

9.3CVSS0.6AI score0.81628EPSS
Exploits22References5
ThreatPost
ThreatPost
added 2014/10/28 1:9 p.m.32 views

US-CERT Warns of Dyre Banking Trojan

The Department of Homeland Security formally sounded the alarm Monday on Dyre, the banking Trojan that’s been spotted siphoning banking credentials from both large enterprises and major financial institutions as of late. The warning came in the form of an alert from the United States Computer...

10CVSS1.8AI score0.66555EPSS
Exploits2References5
ThreatPost
ThreatPost
added 2014/09/18 10:57 a.m.26 views

Dyre Trojan Targeting More than Salesforce.com Credentials

The criminals who unleashed a variant of the Dyre banking Trojan recently may have more up their sleeve than harvesting Salesforce.com credentials. Analysis of a sample conducted by SaaS security company Adallom determined that the new strain of Dyre is targeting large enterprises in addition to...

0.9AI score
Exploits0References2
Rows per page
Query Builder