silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,057
A new malicious campaign is distributing an upgraded variant of DanaBot that comes with a new ransomware module used to target potential victims from Italy and Poland via phishing emails which deliver malware droppers.
As initially discovered by Proofpoint researchers in May 2018, DanaBot is a modular banking Trojan developed in Delphi and designed to steal banking credentials and sensitive information by collecting form data, taking screenshots, or logging keystrokes on compromised computers.
DanaBot Demands a Ransom Payment - Check Point Research
Research by: Yaroslav Harakhavik and Aliaksandr Chailytko It’s been over a year since DanaBot was first discovered, and its developers are still working to improve it and find new opportunities to collaborate with other malware actors. Check Point Research has been tracking DanaBot campaigns...
research.checkpoint.com