Another Banking Trojan Adds Support for NSA's EternalBlue Exploit

Discussion in '0-day Release' started by RGiskardR, Sep 28, 2017.

  1. RGiskardR

    RGiskardR Malware Tester Silver Member


    A third banking trojan has added support for EternalBlue, an exploit supposedly created by the NSA, leaked online by the Shadow Brokers, and the main driving force behind the WannaCry and NotPetya ransomware outbreaks.

    The first banking trojans to do so were Emotet and TrickBot, back in July this year. These two banking trojans used heavy customizations of the EternalBlue exploit to spread to other computers on the same internal network, in the hunt for computers with more sensitive data, or more victims to compromise.

    The updates to these two trojans seem to have inspired the creators of the Retefe banking trojan, who have now done the same.

    Full source:
    silversurfer likes this.
  2. Google Adsense

Share This Page