Download - Dridex: All You Need To Know About This Persistent Financial Trojan

Transcript
Page 1: Dridex: All You Need To Know About This Persistent Financial Trojan

@threa'ntel    |    www.symantec.com  

TROJAN  DESIGNED  TO  STEAL  BANKING  CREDENTIALS  BY  INTERCEPTING  ONLINE  BANKING  SESSIONS    

WHO IS BEHIND IT?

USER  RECEIVES  SPAM  EMAIL  

1

USER  OPENS  ATTACHMENT  &  IS      ASKED  TO  ENABLE  MACROS  

2

VBS.DOWNLOADER.TROJAN            IS  DROPPED  

3

.VBS  FILE  INSTALLS    W32.CRIDEX  TROJAN  

4

WHO HAVE THEY TARGETED?

AUSTRALIA  

18  

ITALY  

29  US  

76   UAE  

14  UK  

33  

? PROFESSIONAL  CYBERCRIME  ORGANIZATIONS  

HOW IS IT DISTRIBUTED?

WE  SPEAK  ENGLISH!  

ONE  LARGE  GANG      

MULTIPLE  SUB  GROUPS  

OR

SPAM  EMAIL  CAMPAIGNS  

HOW BIG ARE THE ATTACKS?

OVER  10  WEEKS…                          270K  

INVOICE  ORDER  SCAN  RECEIPT  PAYMENT  

#TROJAN              #DRIDEX  

CAMPAIGNS  145  

CAMPAIGNS  PER  DAY  

3  

WHAT DOES IT DO?

EMAILS  BLOCKED  PER  CAMPAIGN    

NUMBER  OF  ORGANIZATIONS  

Top Related

Punim seminarik sulmet nga virusi trojan

Punim seminarik sulmet nga virusi trojan

Trojan-PSW.Win32.Tepfer.sika : Immediately remove Trojan-PSW.Win32.Tepfer.sika from computer

Trojan-PSW.Win32.Tepfer.sika : Immediately remove Trojan-PSW.Win32.Tepfer.sika from computer

Persistent Metally Ill

Persistent Metally Ill

TROJAN HORSE

TROJAN HORSE

Trojan Fake Alert 5 Fr

Trojan Fake Alert 5 Fr

Trojan War banaba

Trojan War banaba

Trojan Downloader.win32.Devsog!k

Trojan Downloader.win32.Devsog!k

Modul 7 Trojan, Backdoors,RootKit

Modul 7 Trojan, Backdoors,RootKit

Languages
Pages
Legal

Copyright © 2022 FDOCUMENT