Sign up for The Paypers newsletter Follow The Paypers on LinkedIn Follow The Paypers on Twitter Follow The Paypers on Facebook Follow The Paypers on Google +
The Paypers, paypers, Insight in payments, News, Reports, Events
 advertisement
Digital Identity, Security & Online Fraud

New banking Trojan targets US banks

Tuesday 14 November 2017 | 11:43 AM CET

IBM X-Force Research has spotted a new banking Trojan dubbed IcedID which is targeting US-based financial institutions.

The Trojan has several standout techniques and procedures, such as the ability to spread over a network and the ability to monitor a browser’s activity by setting up a local proxy for traffic tunneling. Similar to the TrickBot and Dridex Trojans, IcedID both web injection and redirection attack techniques.

IcedID is being distributed by the Emotet Trojan, which is used as a dropper to put IcedID on targeted systems. Emotet is known for its spam campaigns, designed to look like messages from banks, which contain malicious .zip archives.

According to X-Force, IcedID requires a reboot to complete its full deployment. The reboot also serves as way to attempt to evade analysis via sandboxes that do not emulate rebooting.

More: Link
 advertisement
 advertisement
 advertisement
 advertisement