GootKit (07ffcf9f-b9c0-4b22-af4b-78527427e6f5)
As was the case earlier, the bot Gootkit is written in NodeJS, and is downloaded to a victim computer via a chain of downloaders. The main purpose of the bot also remained the same – to steal banking data. The new Gootkit version, detected in September, primarily targets clients of European banks, including those in Germany, France, Italy, the Netherlands, Poland, etc.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| GootKit (07ffcf9f-b9c0-4b22-af4b-78527427e6f5) | Tool | GootKit (329efac7-922e-4d8b-90a9-4a87c3281753) | Malpedia | 1 |