Malware Analysis: Trickbot

2022-05-24 04:06

Orange Cyberdefense's CyberSOCs have been tracking the specific malware named Trickbot for quite some time.

This threat analysis will be focused on the threat actor named TA551, and its use of Trickbot as an example.

Since June 2021, the group TA551 started delivering the Trickbot malware using an encrypted zip.

NB: The Threat Actor used the same modus operandi before/in parallel to Trickbot to deliver other malware.

Ryuk on the other hand is a ransomware that is linked directly to the threat actor behind Trickbot.

Trickbot is used by different threat actors, but the detection approach stays the same on most of its specific stages.

News URL

https://thehackernews.com/2022/05/malware-analysis-trickbot.html

#malware #trickbot