Latest cyber-attack from the TrickBot malware family that steals customers’ online banking information

By VARINDIA - 2019-06-14

SonicWall Capture Labs Threat Research Team recently found a new variant sample and activity in June for the TrickBot malware family. This family has been well known for many years, mainly focused on stealing the victim’s online banking information. This variant has been written by developers with slick development skills wrapping its core functionality with a “Squirrel Shooting Game” code base to throw off initial analysis. It is often called a banker, however, its modular structure allows it to freely add new functionalities without modifying the core bot. This particular variant uses an RSA encryption schema to protect certain areas of its core code along with custom xor encrypted strings. TrickBot also has the ability to continually update itself by downloading new modules from the C&C server and change its configuration on the fly. A picture of the game wrapped malware:

The game wrapped malware only serves as an analysis trick to throw off Security Researchers and others that want to try and analyze its code base. The game code doesn’t ever execute.

The longer the sample is able to run the more IP Addresses are generated and connected too. At first initial analysis we’ve seen the sample connect to over ten IPs. As you close each connection the sample seems to auto rotate the IP Addresses that are established.

The commands that are executed will disable RealtimeMonitoring, stop the service “WinDefend”, and try to delete the service after it’s terminated. Once finished, it will execute a new process called “teut.exe” which is just the original .exe above just in a new location.

Name:
Email:
Comment:

INTERVIEWS

Lenovo's TruScale makes Everything as a Service' a reality

Canon celebrates 25 years of its incredible journey in India

Network intelligence offers real-time insights into network performance and customer usage patterns

How 5G and metaverse are opening up new possibilities for the edtech industry

ESG reporting in India set to see a sea-change

MAXHUB looks to expanding the hybrid classroom solution customers in India

TOP VIDEOS

India’s Smartphone shipment declines sharply

Worldwide Device Shipments to Decline 4% in 2023

Can eSIM protect SIM swap frauds in India?

CIO - SPEAK

WFA, AI, Supply chain, Data Breaches & Data Privacy etc. - Key trends of 2023

Ashton D'Cruz, Director - CAO, CGO, CISO & Head - CC&S Governan...

IoT devices need to have in-built protection

Vivekananda Naskar, Director -IT, India, Protegrity Apart...

Enterprises may face challenges like IoT security, AI, Ransomware, Supply chain attacks, Phishing etc.

Ajay Yadav, Head- IT & SAP, SBL New technologies like Cloud adopti...

Start-Up and Unicorn Ecosystem

Tenon Group deploys FM services for Hyderabad Metro

Coruson to offer Air India end-to-end safety management acro...

Oracle intros new Logistics capabilities within Oracle Fusio...

Godrej & Boyce to invest in IoT-based technology and data

Mavenir launches FWA solution to accelerate broadband covera...

Airbus selects LTTS for Advanced Capabilities and Digital...

DaveAI Kicks off the Year with Four Major Projects Going Liv...

UiPath brings new migration capabilities and connectors to e...

NXP and VinFast Collaborate on Developing Next-Generation Sm...

Critical Infrastructure sectors More at Risk of Cyberattacks...

SECURITY

SentinelOne and KPMG to accelerate cyber investigations and response

SentinelOne has announced an alliance with KPMG LLP to accelerate investigations and respo...

Tenable’s Active Directory Security to strengthen cyber defences of India’s fashion industry

With the increasing sophistication in cybercrime, the rise in regulatory demands, and cust...

SEQRITE launches HawkkHunt XDR 2.0

SEQRITE has unveiled the advanced version of HawkkHunt XDR (Extended Detection and Respons...

SOFTWARE

SignDesk & Microsoft to drive the next phase of document automation

SignDesk has announced its partnership with Microsoft & G7 CR Technologies to augment...

SAP extends partnership with Red Hat

SAP and Red Hat announced an expanded partnership to significantly increase SAP’s us...

TurboHire marks its availability in the Microsoft Azure Marketplace

TurboHire has announced its availability in the Microsoft Azure Marketplace. TurboHire&rsq...

START - UP

ideaForge inks an investment deal with NW Engineering

ideaForge, ranked 7th globally, as a top dual-use commercial and military drone manufactur...

T-Hub announces two New Program Cohorts

T-Hub has celebrated National Startup Day with the launch of two new cohort programs - the...

Odisha to be the next industrial hub of the country: MSME Minister

Startup Mela 2023, the maiden effort of Startup Odisha, aimed at orienting youth toward st...

SOUTHERN INDIA INFORMATION TECHNOLOGY FAIR (SIITF) -2018
BANGALURU

STAR NITE AWARDS(SNA) - 2018
NEW DELHI

ODISHA INFORMATION TECHNOLOGY FAIR(OITF)-2019
BHUBANESWAR

WESTERN INDIA INFORMATION TECHNOLOGY FAIR(WIITF) - 2019
MUMBAI

PERIPHERALS

Canon India rolls out multi-purpose desktop A1 Plus Large Format Printer

Driven by its pursuit in innovation, Canon India expanded its printing portfolio with the...

Photo Park expands its digital printing network with two new HP Indigo 7K Presses

Photo Park Digital Press – the largest colour lab in India, has become the first cus...

Consistent launches Dual-Band 4G/LTE GSM wireless router

Consistent Infosystems has launched its highly versatile Wireless Dual Band 4G Router that...

ASUS inaugurates its 3rd Pegasus store in Delhi

ASUS India has announced the launch of the Pegasus store in New Delhi. This is the brand&#...

INDUSTRY EVENTS

OITF 2023 lays stress on how the Digital Workplace trends are getting redefined

Technology is an enabler. It provides the means to create and make a difference, which ult...

Hikvision showcases Problem-Solving Retail Security Solutions in National Retail Federation Show

Hikvision is excited to attend the National Retail Federation’s NRF 2023 Retail Show...

Canalys Forums 2023 coming to Bangkok, Barcelona and Palm Springs

Canalys has announced the dates and locations for its 2023 forums, with the global analyst...

SIITF 2022: Digital transformation is creating opportunities for innovation across industries

Consumer preferences continue to change, straining already tight margins and stranding com...

E- COMMERCE

Worldline rolls out Buland Bharat digital payments suite for a stronger and inclusive India

Worldline announced the launch of its Buland Bharat digital payments suite, which is desig...

PhonePe gets growth funds at a $12 billion valuation, round led by General Atlantic

PhonePe announced it has raised $350 million in funding from General Atlantic, at a pre-mo...

Why Indian Govt.’s attempt to democratize digital commerce space can be a success?

The Indian government’s idea to democratize e-commerce and support MSMEs & small...

Zoho Commerce to help brands leverage ONDC

Zoho Corporation has announced that Zoho Commerce, its unified platform for e-commerce, wi...

MOVERS & SHAKERS

Videonetics names Ashish Goyal as Director of Software Engineering and Development

Videonetics has announced the appointment of Ashish Goyal as Director of Software Engineer...

Rockwell Automation appoints Shovan Sengupta as Regional VP - Market Access

Rockwell Automation has announced that Shovan Sengupta has been promoted to regional vice...

Aman Thareja to spearhead Forcepoint India operation

Aman Thareja has joined Forcepoint India as the Managing Director. He has replaced Surende...

Jidoka Technologies appoints Shyam Kumar as Director of Sales and Marketing

Jidoka Technologies has announced the appointment of Shyam Kumar R as the organization&rsq...

CHANNEL - BUZZ

SAP announces Regional Strategic Services Partner initiative

SAP APJ has announced a Regional Strategic Services Partner (RSSP) initiative to amplify t...

PV Lumens collaborates with Digifort to offer Video Surveillance Solutions in India

PV Lumens LLP has partnered with video management systems company Digifort to offer their...

Redis announces new enhancements in its Global Partner Program

Redis has announced new enhancements to their global partner program to enable its growing...

TechnoBind signs partnership with Indusface

TechnoBind has announced their collaboration with Indusface. Indusface promises to be a Tr...

Keep digital devices BOT free