Upload File

dridex: all you need to know about this persistent financial trojan

  • Home
  • Technology
  • Dridex: All You Need To Know About This Persistent Financial Trojan
1
@threa’ntel | www.symantec.com TROJAN DESIGNED TO STEAL BANKING CREDENTIALS BY INTERCEPTING ONLINE BANKING SESSIONS WHO IS BEHIND IT? USER RECEIVES SPAM EMAIL 1 USER OPENS ATTACHMENT & IS ASKED TO ENABLE MACROS 2 VBS.DOWNLOADER.TROJAN IS DROPPED 3 .VBS FILE INSTALLS W32.CRIDEX TROJAN 4 WHO HAVE THEY TARGETED? AUSTRALIA 18 ITALY 29 US 76 UAE 14 UK 33 ? PROFESSIONAL CYBERCRIME ORGANIZATIONS HOW IS IT DISTRIBUTED? ONE LARGE GANG MULTIPLE SUB GROUPS OR SPAM EMAIL CAMPAIGNS HOW BIG ARE THE ATTACKS? OVER 10 WEEKS… 270K INVOICE ORDER SCAN RECEIPT PAYMENT #TROJAN #DRIDEX CAMPAIGNS 145 CAMPAIGNS PER DAY 3 WHAT DOES IT DO? EMAILS BLOCKED PER CAMPAIGN NUMBER OF ORGANIZATIONS

Upload: symantec

Post on 15-Feb-2017

1.014 views

Category:

Technology


1 download

Report

TRANSCRIPT

Page 1: Dridex: All You Need To Know About This Persistent Financial Trojan

@threa'ntel    |    www.symantec.com  

TROJAN  DESIGNED  TO  STEAL  BANKING  CREDENTIALS  BY  INTERCEPTING  ONLINE  BANKING  SESSIONS    

WHO IS BEHIND IT?

USER  RECEIVES  SPAM  EMAIL  

1

USER  OPENS  ATTACHMENT  &  IS      ASKED  TO  ENABLE  MACROS  

2

VBS.DOWNLOADER.TROJAN            IS  DROPPED  

3

.VBS  FILE  INSTALLS    W32.CRIDEX  TROJAN  

4

WHO HAVE THEY TARGETED?

AUSTRALIA  

18  

ITALY  

29  US  

76   UAE  

14  UK  

33  

? PROFESSIONAL  CYBERCRIME  ORGANIZATIONS  

HOW IS IT DISTRIBUTED?

WE  SPEAK  ENGLISH!  

ONE  LARGE  GANG      

MULTIPLE  SUB  GROUPS  

OR

SPAM  EMAIL  CAMPAIGNS  

HOW BIG ARE THE ATTACKS?

OVER  10  WEEKS…                          270K  

INVOICE  ORDER  SCAN  RECEIPT  PAYMENT  

#TROJAN              #DRIDEX  

CAMPAIGNS  145  

CAMPAIGNS  PER  DAY  

3  

WHAT DOES IT DO?

EMAILS  BLOCKED  PER  CAMPAIGN    

NUMBER  OF  ORGANIZATIONS  

Infotreff: Persistent Identifier

Trojan, Backdoors,RootKit

Trojan War banaba

TROJAN HORSE

virus ( trojan horse and salami attack )

Cài đặt trojan cho android

Nair, Persistent Periodontitis

Virus, Spyware, Malware, Trojan

Pembahasan Mengenai Virus Trojan

Trojan Campaña

Guia de Baterias TROJAN

Chapter 22 Malicious Logic · rm ./ls Ls $* TROJAN HORSE. Trojan Horse ... Analisis Karakteristik Statistik. Program Antivirus

Bermain-main Dengan Trojan

Advanced Persistent Threats

Persistent, 1Q FY 2014

Trojan presentacion lalo

PERSISTENT MODELING.pdf

TROJAN WAR

Homeric Epics and Trojan War

Trojan-PSW.Win32.Tepfer.sika : Immediately remove Trojan-PSW.Win32.Tepfer.sika from computer

Trojan HOV Lanes

Federal Trojan et ClickJacking - Lagout · 2016. 7. 7. · Backdoors. La Magic Lantern est ce que l'on appelle un Federal Trojan (Trojan fédéral ou "Cheval de Troie gouvernemental"

Trojan Kondomi

Trojan Downloader.win32.Devsog!k

Delphi Persistent Object

Baterias industriales Trojan

Hbgary Shell Trojan Gens

Persistent Identifiers für die Wissenschaft vom European ... · Persistent Identifiers in EPIC - Tibor Kalman Persistent Identifiers für die Wissenschaft vom European Persistent

Trojan Fake Alert 5 Fr

Trojan Presentation

Trojan War Part 2 - humbleisd.net

Trojan di stato

Trojan e Time Bomb

HafenCity Hamburg – Magdeburger Hafen – Überseequartier · 2018. 5. 25. · werb mit vorgeschaltetem Bewerbungsverfah - ... Trojan + Trojan, Darmstadt Prof. Klaus Trojan · Verena

“BEING PERSISTENT IN PRAYER"