VARINDIA Latest cyber-attack from the TrickBot malware family that steals customers’ online banking information

Latest cyber-attack from the TrickBot malware family that steals customers’ online banking information

By VARINDIA - 2019-06-14

SonicWall Capture Labs Threat Research Team recently found a new variant sample and activity in June for the TrickBot malware family. This family has been well known for many years, mainly focused on stealing the victim’s online banking information. This variant has been written by developers with slick development skills wrapping its core functionality with a “Squirrel Shooting Game” code base to throw off initial analysis. It is often called a banker, however, its modular structure allows it to freely add new functionalities without modifying the core bot. This particular variant uses an RSA encryption schema to protect certain areas of its core code along with custom xor encrypted strings. TrickBot also has the ability to continually update itself by downloading new modules from the C&C server and change its configuration on the fly. A picture of the game wrapped malware:

The game wrapped malware only serves as an analysis trick to throw off Security Researchers and others that want to try and analyze its code base. The game code doesn’t ever execute.

The longer the sample is able to run the more IP Addresses are generated and connected too. At first initial analysis we’ve seen the sample connect to over ten IPs. As you close each connection the sample seems to auto rotate the IP Addresses that are established.

The commands that are executed will disable RealtimeMonitoring, stop the service “WinDefend”, and try to delete the service after it’s terminated. Once finished, it will execute a new process called “teut.exe” which is just the original .exe above just in a new location.

Name:
Email:
Comment:

INTERVIEWS

Prama Hikvision’s Deep in View camera line reduces costs, improves efficiency and speedy and effective incident response

Excellent fit in situations makes ACL Communications a differentiator

What impact has COVD-19 had on the data breach landscape?

"SUSE SDI solutions enable IT departments to achieve innovation with greater Agility, Automation, Service availability and at reduced costs"

Dynamics of New Normal

A Wake-up Call For Everyone On The Issue Of Vulnerability

TOP VIDEOS

Cybercriminals can attack any organization as they are easy targets

Can we measure COVD-19 had on the data breach landscape?

Digitization becomes a process; whereas platforms are the future

Cloud computing bring agility to Financial Services

MSMEs to embrace Digitalisation to stay ahead of competition

CIO - SPEAK

Khalid Wani, Director, Channel Sales, Western Digital India perce...

Sudhindra Holla, Director, Axis Communications, India SAARC

At Axis Communications, one of the first stepsthey took towards suppor...

Sameer Bhatia, Director Asia Pacific Consumer Business Group and Country Manager SAARC & India, Seagate Technology

Seagate caters to all the requirements that support the modern-day surveill...

In the words of Ashish P. Dhakan, MD & CEO, Prama Hikvision India,...

According to Manoj Gupta, MD & CEO, Fortune Marketing, products li...

Start-Up and Unicorn Ecosystem

"Cybernetyx’s partner programs are realistic, scalable and p...

"We will be ramping up our highly structured academy-led tra...

"Vertiv partner programs are focused on keeping our partners...

Acer believes in growth of channel partners on two aspects -...

Western Digital committed to partner growth and success in t...

Engage Partner Program provides greater flexibility on partn...

Veeam PartnerPerks Program designed to build trusting and lo...

"Our leadership position in storage space in the country has...

"Supporting our partners as they discuss their customer impe...

"IBM is committed to support our clients via multiple digita...

SECURITY

Intel investigates data breach after 20GB of confidential data got exposed online

Chipmaker Intel got into investigation of security breach after a...

Attackers misuse legitimate tools in a third of successful cyber-incidents: Kaspersky

Kaspersky Global Emergency Response team in 2019 investigated cyberattacks and came to a c...

Most Indian organizations faced business-impacting Cyber attack in past 12 months: Tenable

A global industry study published by Tenable revealed that the vast majority of Indian org...

SOFTWARE

Heficed launches IP Address Market to become IPXO

Heficed has announced that it will be detaching its solution for streamlined IP leasing -...

PFT brings latest features in CLEAR Media ERP Suite

Prime Focus Technologies (PFT) has announced new functionalities and enhancements in its f...

Emkay Global joins hand with IceWarp

Emkay Global Financial Services has switched to IceWarp in order to optimize their backend...

START - UP

JST Capital expands Teams in the U.S. and Asia

JST Capital (“the Company” or “JST”), a global financial services...

Bolo Indya gains $500K in Pre Series A1 funding by Eagle 10 Ventures & India Accelerator Group

Bolo Indya has announced of completing a $300,000 Pre Series A1 round of Funding. Eagle10...

Piggy announces Ample app for families to manage personal finances

Piggy, a Y-Combinator funded start-up, launched their new mobile application Ample, f...

Unicorn India Ventures invests in Probus Smart Things

Unicorn India Ventures has announced its fourth investment from Rs 400 crore Fund II in IO...

SOUTHERN INDIA INFORMATION TECHNOLOGY FAIR (SIITF) -2018
BANGALURU

STAR NITE AWARDS(SNA) - 2018
NEW DELHI

ODISHA INFORMATION TECHNOLOGY FAIR(OITF)-2019
BHUBANESWAR

WESTERN INDIA INFORMATION TECHNOLOGY FAIR(WIITF) - 2019
MUMBAI

PERIPHERALS

Garmin unveils the Tactical edition of the rugged, reliable outdoor GPS smartwatch Instinct series

Garmin India has announced the Tactical edition of its rugged,&nb...

pTron unleashes Bassbuds UrbanTWS

pTron unveiled Bassbuds Urban at an unbelievable price of INR 1299/. The&nb...

Xiaomi unveils Mi TV Stick in India

Xiaomi launched Mi TV Stick powered by Android TV 9.0,...

HONOR's new range of smart digi items to be available soon

HONOR recently announced the launch of its first laptop - HONOR MagicBook 15 along wi...

INDUSTRY EVENTS

FAIITA announces digital platform for its more than 20,000 SME members across the country

The Union Minister of Electronics and Information Technology Ravi Shankar Prasad formally...

Automation and Digitalization provide competitive edge to companies in a volatile market environment: Siemens

"Companies that had already invested in digitalization were better equipped to handle...

NetApp held 6th Demo day to brief on unique startup accelerator program and more

NetApp held its sixth demo day for the NetApp Excellerator, the company’s flagship s...

Microsoft hosts Inspire 2020 to empower partners

Microsoft has kicked off its annual global partner conference, Microsoft Inspire, via an a...

E- COMMERCE

eBay inks an MoU with UP Govt for its ‘One District One Product’ program

eBay has signed an MoU with the Government of Uttar Pradesh for its ‘One Distri...

Mswipe unveils “Bank Box” to revolutionize the digital payment landscape for SMEs

Mswipe announced the launch of Bank Box, a digital acceptance and payment solution designe...

PayNearby partners with Sub-K Impact Solutions

PayNearby has announced its partnership with Sub-K Impact Solutions (Sub-K). The partnersh...

Airtel Payments Bank ties up with Bharti AXA General Insurance to offer Shop Insurance

Airtel Payments Bank announced Shop Insurance exclusively for its Retailers and Merchants....

MOVERS & SHAKERS

Unique Solutions designates Rupesh Lunkad as Chief Growth Officer

Unique Solutions has announced the appointment of Rupesh Lunkad as the Chief Growth Office...

SugarBox announces five new senior leadership appointments

SugarBox has announced a series of senior leadership appointments, inc...

MPL names Himanshu Raj to head Brand Communications

Mobile Premier League (MPL) has announced the appointment of Himanshu Raj a...

BEL announces Raman R as its GM (Internal Audit)

Raman R has taken charge as General Manager (Internal Audit) of Navratna Defence PSU Bhara...

CHANNEL - BUZZ

UiPath recognises Ingram Micro India for Excellence in Distribution Management

UiPath, the leading enterprise Robotic Process Automation (RPA) software company has confe...

Pelco appoints Supertron VAD as India and SAARC Distributor

Supertron Electronics has formed a value-added distribution (VAD) venture in July 201...

MailVault chooses BD Soft as National Distributor

MailVault has announced BD Soft as its National Distributor for offline presence. BD Soft,...

Barco partners with Trustech Audio Visual Solution to expand its reach

Barco announced its partnership with Trustech Audio Visual Solution LLP, a major distribut...