Banking Trojans Under Development - Check Point Research
Tags
attack-pattern: Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Hooking - T1617 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Hooking - T1179 Hooking
Show in Graph
Common Information
Type Value
UUID cedf8638-7488-4311-9d07-cfdf55f55303
Fingerprint bf058dd1a9332395
Analysis status DONE
Considered CTI value 2
Text language
Published June 6, 2018, 10:14 p.m.
Added to db Sept. 26, 2022, 9:30 a.m.
Last updated Nov. 17, 2024, 6:49 p.m.
Headline Banking Trojans Under Development
Title Banking Trojans Under Development - Check Point Research
Detected Hints/Tags/Attributes 57/1/16
Source URLs
Redirection Url
Details Source https://research.checkpoint.com/banking-trojans-development/
URL Provider
Details Provider Source level domain
Details checkpoint.com research.checkpoint.com
Attributes
Details Type #Events CTI Value
Details File 16 
64.exe
Details File 10 
64.dll
Details File 1 
injector32.exe
Details File 1 
injector64.exe
Details File 14 
temp.exe
Details File 1 
temp.bin
Details File 1 
proxy32.dll
Details File 1 
proxy64.dll
Details File 1260 
explorer.exe
Details File 1 
mod32.dll
Details File 1 
mod64.dll
Details md5 1 
728911a915d9ec3b6defa430d24bc0d5
Details md5 1 
857430b8c9dc78ce4eabbe57cb3ae134
Details Mandiant Temporary Group Assumption 22 
TEMP.EXE
Details Mandiant Temporary Group Assumption 1 
TEMP.BIN
Details Windows Registry Key 31 
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet