Malware
Evilnum
First seen: 2018-01 • Status: active
Currently Active Threat
Evilnum attacks financial technology companies to steal trading secrets and financial data.
Overview
Evilnum targets fintech companies to steal financial data and trading information. The group uses JavaScript-based malware.
Also Known As
EVILNUM
How It Spreads
- • Spear-phishing
- • Malicious LNK files
What It Does
- • Financial data theft
- • Trading information theft
- • Credential harvesting
Is your business exposed?
Target Platforms
Windows
Detection Tips
- • Monitor fintech organizations
- • Watch for LNK-based attacks
MITRE ATT&CK Techniques
T1566, T1005, T1555
If You're Infected
- 1.
Audit trading systems
- 2.
Reset financial system credentials
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required