ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool Numando

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Numando

NamesNumando
CategoryMalware
TypeBanking trojan, Reconnaissance, Backdoor, Keylogger, Info stealer, Credential stealer
Description(ESET) The threat actor behind this malware family has been active since at least 2018. Even though it is not nearly as lively as Mekotio or Grandoreiro, it has been consistently used since we started tracking it, bringing interesting new techniques to the pool of Latin American banking trojans’ tricks, like using seemingly useless ZIP archives or bundling payloads with decoy BMP images. Geographically, it focuses almost exclusively on Brazil with rare campaigns in Mexico and Spain.
Information<https://www.welivesecurity.com/2021/09/17/numando-latam-banking-trojan/>
<https://www.welivesecurity.com/2020/10/01/latam-financial-cybercrime-competitors-crime-sharing-ttps/>
Malpedia<https://malpedia.caad.fkie.fraunhofer.de/details/win.numando>

Last change to this tool card: 28 December 2021

Download this tool card in JSON format

All groups using tool Numando

ChangedNameCountryObserved

Unknown groups

X_[ Interesting malware not linked to an actor yet ]_ 

1 group listed (0 APT, 0 other, 1 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]