GCMAN

  • First known sample

    2015
  • Discovery

    2016
  • Number of targets

    1-100
  • Current status

    Inactive since 2017
  • Type

    Backdoor
  • Targeted platforms

    Windows
  • TOP targeted countries

    Worldwide
  • The way of propagation

    Exploits , Social engineering
  • Purpose/Functions

    Stealing money
  • Special features
    Usage of GCC-compiled programs.
  • Targets

    Financial institutions
  • Description

    Malware that infects financial institutions and is typically delivered via spear-phishing emails. Once inside, a cron script is executed that allows the attackers to transfer money from the infected computers to multiple e-currency services.

    Additional information