Skip to content

Hide Navigation Hide TOC

Geodo (8e002f78-7fb8-4e70-afd7-0b4ac655be26)

Geodo is a banking trojan delivered primarily through malspam emails. It is capable of sniffing network activity to steal information by hooking certain network API calls.

Cluster A Galaxy A Cluster B Galaxy B Level
Emotet (3f7616bd-f1de-46ee-87c2-43c0c2edaa28) Tool Geodo (8e002f78-7fb8-4e70-afd7-0b4ac655be26) Banker 1
Geodo (8e002f78-7fb8-4e70-afd7-0b4ac655be26) Banker Emotet (d29eb927-d53d-4af2-b6ce-17b3a1b34fe7) Malpedia 1
Emotet (3f7616bd-f1de-46ee-87c2-43c0c2edaa28) Tool Emotet (d29eb927-d53d-4af2-b6ce-17b3a1b34fe7) Malpedia 2