Trusted Design

New banking trojan 'Slave' hitting Polish Banks

概要

S21Sec have spotted a new banking trojan in the wild that uses JSON formatted webinjects. After that so many Zeus-like webinjects around, this was kind of refreshing. Currently this banker only have targets in Poland. We are analyzing injects, as they are capable of using ATS.

Created: 2026-02-23

Indicators

類似Pulses

Updated Blackmoon banking Trojan (score: 0.68)
TROJ_WERDLOD: New Banking Trojan Targets Japan (score: 0.64)
PROOFPOINT 2016-02-05: Vawtrak and UrlZone Banking Trojans (score: 0.63)
Infected Korean Website Installs Banking Malware (score: 0.63)
Banking Trojan "Shifu" Distributed via Malicious Word Documents (score: 0.62)

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 3.93

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055 - Process Injection

MITREへのリンク →

Magic Hound

Score: 3.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1566.003 - Spearphishing via Service

MITREへのリンク →

BlackByte

Score: 7.77

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055 - Process Injection
T1480 - Execution Guardrails

MITREへのリンク →

ToddyCat

Score: 3.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT29

Score: 7.84

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1550.003 - Pass the Ticket
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT41

Score: 3.93

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055 - Process Injection

MITREへのリンク →

APT5

Score: 3.93

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055 - Process Injection

MITREへのリンク →

APT32

Score: 6.30

Matched TTPs:

T1055 - Process Injection
T1550.003 - Pass the Ticket

MITREへのリンク →

Gamaredon Group

Score: 6.30

Matched TTPs:

T1055 - Process Injection
T1480 - Execution Guardrails

MITREへのリンク →

BRONZE BUTLER

Score: 3.84

Matched TTPs:

T1550.003 - Pass the Ticket

MITREへのリンク →

Contagious Interview

Score: 6.37

Matched TTPs:

T1480 - Execution Guardrails
T1566.003 - Spearphishing via Service

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT29

Score: 0.81

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1550.003 - Pass the Ticket
T1566.003 - Spearphishing via Service

MITREへのリンク →

BlackByte

Score: 0.79

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055 - Process Injection
T1480 - Execution Guardrails

MITREへのリンク →

Gamaredon Group

Score: 0.67

Matched TTPs:

T1055 - Process Injection
T1480 - Execution Guardrails

MITREへのリンク →

Contagious Interview

Score: 0.67

Matched TTPs:

T1480 - Execution Guardrails
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT32

Score: 0.67

Matched TTPs:

T1055 - Process Injection
T1550.003 - Pass the Ticket

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る