Cinobi Case

A new Malvertising campaign through animated porn games, reward points applications and video streaming applications has compromised bank account users in Japan. The threat actor Is being called Water Kappa. After users download zip archive files from these fake apps, a shell code is activated and triggers Cinobi banking trojan. The trojan is used to steal passwords and usernames of eleven Japanese financial institutions.

 

Best,

BIngo

 

References:

https://thehackernews.com/2021/08/malicious-ads-target-cryptocurrency.html

 

https://heimdalsecurity.com/blog/cinobi-banking-trojan-new-version/

 

https://www.trendmicro.com/en_us/research/21/h/cinobi-banking-trojan-targets-users-of-cryptocurrency-exchanges-.html