Trusted Design

New banking trojan 'Slave' hitting Polish Banks

概要

S21Sec have spotted a new banking trojan in the wild that uses JSON formatted webinjects. After that so many Zeus-like webinjects around, this was kind of refreshing. Currently this banker only have targets in Poland. We are analyzing injects, as they are capable of using ATS.

Created: 2026-02-23

Indicators

類似Pulses

Updated Blackmoon banking Trojan (score: 0.68)
TROJ_WERDLOD: New Banking Trojan Targets Japan (score: 0.64)
PROOFPOINT 2016-02-05: Vawtrak and UrlZone Banking Trojans (score: 0.63)
Infected Korean Website Installs Banking Malware (score: 0.63)
Banking Trojan "Shifu" Distributed via Malicious Word Documents (score: 0.62)

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 3.93

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1684 - Social Engineering

MITREへのリンク →

Magic Hound

Score: 3.99

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1547.008 - LSASS Driver

MITREへのリンク →

BlackByte

Score: 7.77

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1684 - Social Engineering
T1562.010 - Downgrade Attack

MITREへのリンク →

ToddyCat

Score: 3.99

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1547.008 - LSASS Driver

MITREへのリンク →

APT29

Score: 7.84

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1592.004 - Client Configurations
T1547.008 - LSASS Driver

MITREへのリンク →

APT41

Score: 3.93

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1684 - Social Engineering

MITREへのリンク →

APT5

Score: 3.93

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1684 - Social Engineering

MITREへのリンク →

APT32

Score: 6.30

Matched TTPs:

T1684 - Social Engineering
T1592.004 - Client Configurations

MITREへのリンク →

Gamaredon Group

Score: 6.30

Matched TTPs:

T1684 - Social Engineering
T1562.010 - Downgrade Attack

MITREへのリンク →

BRONZE BUTLER

Score: 3.84

Matched TTPs:

T1592.004 - Client Configurations

MITREへのリンク →

Contagious Interview

Score: 6.37

Matched TTPs:

T1562.010 - Downgrade Attack
T1547.008 - LSASS Driver

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT29

Score: 0.81

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1592.004 - Client Configurations
T1547.008 - LSASS Driver

MITREへのリンク →

BlackByte

Score: 0.79

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1684 - Social Engineering
T1562.010 - Downgrade Attack

MITREへのリンク →

Gamaredon Group

Score: 0.67

Matched TTPs:

T1684 - Social Engineering
T1562.010 - Downgrade Attack

MITREへのリンク →

Contagious Interview

Score: 0.67

Matched TTPs:

T1562.010 - Downgrade Attack
T1547.008 - LSASS Driver

MITREへのリンク →

APT32

Score: 0.67

Matched TTPs:

T1684 - Social Engineering
T1592.004 - Client Configurations

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る