TrickMo

Description

(IBM) IBM X-Force researchers analyzed an Android malware app that’s likely being pushed to infected users by the TrickBot Trojan. This app, dubbed “TrickMo” by our team, is designed to bypass second factor and strong authentication pushed to bank customers when they need to authorize a transaction.

While it’s not the first of its kind, this Android malware app is more sophisticated than similar apps and possesses interesting features that enable its operators to steal transaction authorization codes from victims who download the app.

Names

Name
TrickMo

Type

Banking trojan
Loader

Information

https://securityintelligence.com/posts/trickbot-pushing-a-2fa-bypass-app-to-bank-customers-in-germany/
https://www.cleafy.com/cleafy-labs/a-new-trickmo-saga-from-banking-trojan-to-victims-data-leak
https://www.zimperium.com/blog/expanding-the-investigation-deep-dive-into-latest-trickmo-samples/

Mitre Attack

https://attack.mitre.org/software/S0427/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/apk.trickmo

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:TrickMo

Other Information

Uuid

6bedcca0-561d-48a0-942f-bf68911e53d8

Last Card Change

2024-12-27

Threat Intelligence Garden

Explorer

TrickMo

TrickMo

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks