TrickMo (Malware Family)

TrickMo

TrickMo is an advanced banking trojan for Android. Starting out as a companion malware to TrickBot in 2020, it first became a standalone banking trojan by addition of overlay attacks in 2021 and was later (2024) upgraded with remote control capabilities for on-device fraud. The continued development and progressively improved obfuscation suggests an active Threat Actor.

References

2024-10-11 ⋅ zimperium ⋅ Aazim Yaswant
Expanding the Investigation: Deep Dive into Latest TrickMo Samples
TrickMo

2024-09-10 ⋅ Cleafy ⋅ Alessandro Strino, Michele Roviello
A new TrickMo saga: from Banking Trojan to Victim's Data Leak
TrickMo

2023-12-04 ⋅ cyble ⋅ Cyble
TrickMo's Return: Banking Trojan Resurgence With New Features
TrickMo

2020-03-24 ⋅ Pavel Asinovsky
TrickBot Pushing a 2FA Bypass App to Bank Customers in Germany
TrickMo

There is no Yara-Signature yet.

TrickMo Propose Change

References

TrickMo