TrickBot malware systematically targets Ukraine
The TrickBot malware operators have specifically turned around to systematically target Ukraine since the start of War in February 2022.
What is TrickBot ?
TrickBot is a Russian computer trojan for certain operating systems. It is also known as ITG23, Wizard Spider, and Gold Blackburn.
Basically, it is a cybercriminals group which steals financial details, bank details, card credentials but not the operators have easily managed to establish a complete malware ecosystem.
How is TrickBot targeting Ukraine?
The following hacking group have shown up again to launch a phishing campaign using Cobalt Strike, AnchorMail, IcedID, and Meterpreter to target Ukrainians.
However, the attacks are reported to commence in mid-April 2022.
Surprisingly, the malware actors used the spirit of Nuclear war in the email tricks to distribute malware mails. And later stealing data malware in Ukraine.
Also, the Computer Emergency Response Team of Ukraine abbreviated as CERT-UA has warned about the UAC-0056 group. This group involves dawning state organizations with staffing-themed lures for dropping Cobalt Strike Beacons on the hosts.