ID | Votes | Profile Description |
---|---|---|
Guildma | 1 | Guildma is a malicious software (malware) that has been operational since at least 2015, initially targeting banking users exclusively from Brazil. Over time, this malware, alongside others such as Javali, Melcoz, and Grandoreiro, expanded its operations to target banks in other countries including |
ID | Type | Votes | Profile Description |
---|---|---|---|
Ousaban | Unspecified | 2 | Ousaban is a malicious software, or malware, specifically a banking trojan developed primarily in Delphi. This harmful program is designed to exploit and damage computer systems, often infiltrating them via suspicious downloads, emails, or websites without the user's knowledge. Once inside, Ousaban |
Mekotio | Unspecified | 1 | Mekotio is a sophisticated and persistent banking trojan that has primarily targeted Latin American countries since at least 2015. This malware, designed to exploit and damage computer systems, typically spreads through phishing emails that employ social engineering tactics. Once inside a system, Me |
Javali | Unspecified | 1 | Javali is a multistage malware that has been active since November 2017, primarily targeting customers of financial institutions in Portuguese- and Spanish-speaking countries, with a particular focus on Brazil and Mexico. Part of a group of banking trojans including Guildma, Melcoz, and Grandoreiro, |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
Source | CreatedAt | Title |
---|---|---|
CERT-EU | 5 months ago | Google Cloud Run Abused in Massive Banking Trojan Operation |
CERT-EU | 5 months ago | Banking Trojans Target Latin America and Europe Through Google Cloud Run |
CERT-EU | 5 months ago | High-volume malware campaigns involve Google Cloud Run exploitation |
CERT-EU | 5 months ago | TikTok’s latest actions to combat misinformation shows it’s not just a U.S. problem |
CERT-EU | 5 months ago | Hackers abuse Google Cloud Run in massive banking trojan campaign |
DARKReading | 5 months ago | Google's Cloud Run Service Spreads Several Bank Trojans |
CERT-EU | a year ago | InfoSec Handlers Diary Blog - SANS Internet Storm Center |
Unit42 | 7 months ago | From DarkGate to AsyncRAT: Malware Detected and Shared As Unit 42 Timely Threat Intelligence |
MITRE | a year ago | Astaroth Malware Uses Legitimate OS and Antivirus Processes to Steal Passwords and Personal Data |
MITRE | a year ago | Seeing a Resurgence of Demonic Astaroth WMIC Trojan | Cofense |