Global operation to disrupt the Grandoreiro banking trojan [Wednesday, January 31, 2024]

ESET collaborated with the Federal Police of Brazil to disrupt the Grandoreiro botnet by providing technical analysis, statistics, and known comman...
Global operation to disrupt the Grandoreiro banking trojan [Wednesday, January 31, 2024]
Global operation to disrupt the Grandoreiro banking trojan

Global operation to disrupt the Grandoreiro banking trojan

Description :
ESET collaborated with the Federal Police of Brazil to disrupt the Grandoreiro botnet by providing technical analysis, statistics, and known command and control servers. ESET was able to glimpse victimology due to a design flaw in Grandoreiro's network protocol.

Published Created Modified
2024-01-31 10:01:34 2024-01-31 10:01:34 2024-01-31 10:35:58

Tags

Indicators

IPv4s : Domains : Malwares :
  • Grandoreiro - S0531
  • Mekotio
  • Vadokrist
Intrusion set :
  • Grandoreiro
Location :
  • Argentina
  • Mexico
  • Spain
  • Brazil
MITRE ATT&CK Techniques : Other observables :
  • Finance

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.