search

chartingshow / crypto-firewall

🎁 Blocks browser-based crypto mining, cryptojacking, banking and crypto malware and phishing websites, apps and hackers command-and-control (C2) servers.
GNU General Public License v3.0
7 stars 0 forks source link

Block web injection malware campaign affecting 40+ banks #419

Closed summercms closed 6 months ago

summercms commented 6 months ago

Enhancement idea

Description

Web injections, a favoured technique employed by various banking trojans, have been a persistent threat in the realm of cyberattacks. These malicious injections enable cyber criminals to manipulate data exchanges between users and web browsers, potentially compromising sensitive information. A new malware campaign using JavaScript web injections.

Links

https://securityintelligence.com/posts/web-injections-back-on-rise-banks-affected-danabot-malware/

IOC

I2P websites

n/a

IPFS websites

n/a

Tor2web websites

n/a

TOR websites

n/a

URL's

n/a

Folders

n/a

Sub-Domains

n/a

Domains

jscdnpack.com
unpack.com

IP's

n/a

Emails

n/a

Wallet addresses

n/a

Mining pool addresses

n/a