Grandoreiro Banking Malware Disrupted – Security Week with Tony Anscombe



The banking Trojan, which primarily targeted Brazil, Mexico, and Spain, blocked the victim’s screen, recorded keystrokes, simulated mouse and keyboard activity, and displayed fake pop-ups. up.

This week, Brazilian law enforcement took steps to thwart Grandoreiro banking malware in a joint effort also supported by ESET’s research team, which provided technical analysis, statistics and domain names and IP addresses of known C&C servers.

The operation – which also benefited from the support of Interpol, the Spanish police and the Caixa bank – targeted individuals considered high in the Grandoreiro hierarchy. Grandoreiro has targeted victims in Brazil, Mexico, Spain and most recently Argentina, causing millions in fraud losses since at least 2017.

For technical information on Grandoreiro, go to our blog post.

Connect with us on Facebook, Twitter, LinkedIn And Instagram.

Leave a comment