TrickBot

Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware

Dec 2, 2023 by iHash Leave a Comment

Dec 02, 2023NewsroomCybercrime / Malware A Russian national has been found guilty in connection with his role in developing and deploying a malware known as TrickBot, the U.S. Department of Justice (DoJ) announced. Vladimir Dunaev, 40, was arrested in South Korea in September 2021 and extradited to the U.S. a month later. "Dunaev developed browser modifications and malicious … [Read more...] about Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware

Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime

Oct 30, 2021 by iHash Leave a Comment

A Russian national, who was arrested in South Korea last month and extradited to the U.S. on October 20, appeared in a federal court in the state of Ohio on Thursday to face charges for his alleged role as a member of the infamous TrickBot group."This is another success for the Department's recently launched Ransomware and Digital Extortion Task Force in dismantling ransomware … [Read more...] about Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime

New features of the Trickbot Trojan

Oct 20, 2021 by iHash Leave a Comment

Exactly five years ago, in October 2016, our solutions first encountered a Trojan named Trickbot (aka TrickLoader or Trickster). Found mostly on home computers back then, its primary task was to steal login credentials for online banking services. In recent years, however, its creators have actively transformed the banking Trojan into a multifunctional modular tool. What’s … [Read more...] about New features of the Trickbot Trojan

Attackers Behind Trickbot Expanding Malware Distribution Channels

Oct 15, 2021 by iHash Leave a Comment

The operators behind the pernicious TrickBot malware have resurfaced with new tricks that aim to increase its foothold by expanding its distribution channels, ultimately leading to the deployment of ransomware such as Conti. The threat actor, tracked under the monikers ITG23 and Wizard Spider, has been found to partner with other cybercrime gangs known Hive0105, Hive0106 (aka … [Read more...] about Attackers Behind Trickbot Expanding Malware Distribution Channels

Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang

Aug 19, 2021 by iHash Leave a Comment

Cybersecurity researchers have disclosed details about an early development version of a nascent ransomware strain called Diavol that has been linked to threat actors behind the infamous TrickBot syndicate. The latest findings from IBM X-Force show that the ransomware sample shares similarities to other malware that has been attributed to the cybercrime gang, thus establishing … [Read more...] about Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang

Trickbot Malware Returns with a new VNC Module to Spy on its Victims

Jul 13, 2021 by iHash Leave a Comment

Cybersecurity researchers have opened the lid on the continued resurgence of the insidious Trickbot malware, making it clear that the Russia-based transnational cybercrime group is working behind the scenes to revamp its attack infrastructure in response to recent counter efforts from law enforcement. "The new capabilities discovered are used to monitor and gather intelligence … [Read more...] about Trickbot Malware Returns with a new VNC Module to Spy on its Victims

TrickBot Malware Gets UEFI/BIOS Bootkit Feature to Remain Undetected

Dec 3, 2020 by iHash Leave a Comment

TrickBot, one of the most notorious and adaptable malware botnets in the world, is expanding its toolset to set its sights on firmware vulnerabilities to potentially deploy bootkits and take complete control of an infected system. The new functionality, dubbed "TrickBoot" by Advanced Intelligence (AdvIntel) and Eclypsium, makes use of readily available tools to check devices … [Read more...] about TrickBot Malware Gets UEFI/BIOS Bootkit Feature to Remain Undetected

Microsoft and Other Tech Companies Take Down TrickBot Botnet

Oct 13, 2020 by iHash Leave a Comment

Days after the US Government took steps to disrupt the notorious TrickBot botnet, a group of cybersecurity and tech companies has detailed a separate coordinated effort to take down the malware's back-end infrastructure. The joint collaboration, which involved Microsoft's Digital Crimes Unit, Lumen's Black Lotus Labs, ESET, Financial Services Information Sharing and Analysis … [Read more...] about Microsoft and Other Tech Companies Take Down TrickBot Botnet

Automating Remote Remediation of TrickBot: Part 2

Jul 10, 2020 by iHash Leave a Comment

This is Part Two in a two-part blog series covering the CrowdStrike® Falcon Complete™ team’s ability to remotely remediate “TrickBot,” a modular trojan that is particularly devastating when paired with “Ryuk” ransomware. This deep dive analyzes an automated methodology that leverages the Falcon Real Time Response (RTR) API in addition to PowerShell and Python scripting in order … [Read more...] about Automating Remote Remediation of TrickBot: Part 2

Automating Remote Remediation of TrickBot: Part 1

Jul 8, 2020 by iHash Leave a Comment

The combination of commodity banking malware and ransomware is nothing new in the threat landscape. Adversaries continue to develop new tactics that enhance their capabilities to quickly spread malware infections across an environment, seize control of systems and hold organizations hostage pending a ransom payment. The adversary tracked as WIZARD SPIDER has used “big game … [Read more...] about Automating Remote Remediation of TrickBot: Part 1

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54