Keyword: trickbot
11 Total Search   |   Showing Results : 1 - 11
  
TRICKBOT
Trickbot is a banking trojan used in attacks usually against small- and medium-sized businesses. It is designed to access online accounts, especially bank accounts, to obtain Personally Identifiable Information (PII). The obtained data is mostly used...
Trickbot Strikes Via New Spam Wave
We have observed a new spam wave delivering Trickbot. This campaign uses spam mail with malicious attachments disguised as a Microsoft Excel file. The message contains fake payment notification, claiming to be from ...
EMOTET
Emotet first appeared in 2014 as a banking malware that attempted to infect computers and steal sensitive information. This malware mostly spreads by spam and phishing emails with infected attachments and embedded malicious URLs. It has worm-like cap...
21-016 (April 6, 2021)
* indicates a new version of an existing ruleDeep Packet Inspection Rules:DNS Client1010784* - DNSmasq DNSSEC Out Of Bounds Write Vulnerability (CVE-2020-25687)DNS Server1010613* - Identified DNS Trojan.Win32.Trickbot.Dns Traff...
20-063 (December 22, 2020)
* indicates a new version of an existing ruleDeep Packet Inspection Rules:DNS Server1010633* - Identified DNS Trojan.Linux.Anchor.A Traffic1010613* - Identified DNS Trojan.Win32.Trickbot.Dns Traffic1010632* - Identified DNS...
20-059 (November 24, 2020)
* indicates a new version of an existing ruleDeep Packet Inspection Rules:DNS Server1010613* - Identified DNS Trojan.Win32.Trickbot.Dns Traffic1010633 - Malware Trojan.Linux.Anchor.A1010632 - Malware Trojan.Win64.Anchor.ADi...
20-058 (November 17, 2020)
* indicates a new version of an existing ruleDeep Packet Inspection Rules:DCERPC Services1010164* - Identified Possible Ransomware File Extension Create Activity Over Network Share1007596* - Identified Possible Ransomware F...
CaseID-2412
TRICKBOT - Malicious certificate - SSLDetection Name: HTTPS_TRICKBOT_CERTIFICATEMalware Family: TRICKBOTRelated Malware: N/A
Trojan.Win32.TRICKBOT.CFGX
This Trojan may arrive bundled with malware packages as a malware component. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It requires its main component to succe...
Trojan.Win32.TRICKBOT.MDL
This Trojan may arrive bundled with malware packages as a malware component. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It requires its main component to succe...
BAZAR
BAZAR is a loader and backdoor. The loader gives the attacker its initial foothold in the environment, while the backdoor establishes persistence. Together they give the attacker a chance to drop another payload such as ransomware and exploits that c...