ATMii

Description

(Kaspersky) ATMii was first brought to our attention in April 2017, when a partner from the financial industry shared some samples with us. The malware turned out to be fairly straightforward, consisting of only two modules: an injector module (exe.exe, 3fddbf20b41e335b6b1615536b8e1292) and the module to be injected (dll.dll, dc42ed8e1de55185c9240f33863a6aa4). To use this malware, criminals need direct access to the target ATM, either over the network or physically (e.g. over USB). ATMii, if it is successful, allows criminals to dispense all the cash from the ATM.

Names

Name
ATMii

Type

ATM malware
Backdoor

Information

https://securelist.com/atmii-a-small-but-effective-atm-robber/82707/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.atmii

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:atmii

Other Information

Uuid

6ece62e7-19f4-4568-953e-f240252f0568

Last Card Change

2020-05-24

Threat Intelligence Garden

Explorer

ATMii

ATMii

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks