S0266Windows

S0266TrickBot

Platforms
1
ATT&CK
14.1
References
8

Description

[TrickBot](https://attack.mitre.org/software/S0266) is a Trojan spyware program written in C++ that first emerged in September 2016 as a possible successor to [Dyre](https://attack.mitre.org/software/S0024). [TrickBot](https://attack.mitre.org/software/S0266) was developed and initially used by [Wizard Spider](https://attack.mitre.org/groups/G0102) for targeting banking sites in North America, Australia, and throughout Europe; it has since been used against all sectors worldwide as part of "big game hunting" ransomware campaigns.(Citation: S2 Grupo TrickBot June 2017)(Citation: Fidelis TrickBot Oct 2016)(Citation: IBM TrickBot Nov 2016)(Citation: CrowdStrike Wizard Spider October 2020)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupWizard Spiderg0102100%live

References

  1. https://attack.mitre.org/software/S0266
  2. https://www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/tspy_trickload.n
  3. https://securityintelligence.com/tricks-of-the-trade-a-deeper-look-into-trickbots-machinations/
  4. https://blog.trendmicro.com/trendlabs-security-intelligence/trickbot-adds-remote-application-credential-grabbing-capabilities-to-its-repertoire/
  5. https://www.crowdstrike.com/blog/wizard-spider-adversary-update/
  6. https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Trojan:Win32/Totbrick
  7. https://www.fidelissecurity.com/threatgeek/2016/10/trickbot-we-missed-you-dyre
  8. https://www.securityartwork.es/wp-content/uploads/2017/07/Trickbot-report-S2-Grupo.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
QakBot
Software
Emotet
Group
Wizard Spider
Software
Dridex
Software
Trick Bot
Software
SDBbot
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.