What is TrickBot Malware?

TrickBot malware is a banking Trojan released in 2016 that has since evolved into a modular, multi-phase malware capable of a wide variety of illicit operations, including:

  • Stealing credentials, data and personal information
  • Elevating account privileges to expand access to the compromised network
  • Installing backdoors within the network to enable remote access
  • Downloading and installing other malware or ransomware to carry out secondary attacks, the most common of which involve Ryuk or Conti ransomware
  • Disabling antivirus tools or other cybersecurity measures, such as Windows Defender
  • Modifying itself to avoid detection

What makes TrickBot highly concerning is its modular nature, which can adapt and evolve to target specific network or environment weaknesses which can then be exploited during follow-on malware or ransomware attacks.

Kurt Baker is the senior director of product marketing for Falcon Intelligence at CrowdStrike. He has over 25 years of experience in senior leadership positions, specializing in emerging software companies. He has expertise in cyber threat intelligence, security analytics, security management and advanced threat protection. Prior to joining CrowdStrike, Baker worked in technical roles at Tripwire and had co-founded startups in markets ranging from enterprise security solutions to mobile devices. He holds a bachelor of arts degree from the University of Washington and is now based in Boston, Massachusetts.

Featured Articles

Rootkit Malware
What is Crypto-Malware?
What is a Trojan Horse?

Start your free trial now.

Total protection has never been easier. Take advantage of our free 15-day trial and explore the most popular solutions for your business:

  • Protect against malware with next-gen antivirus.
  • Get unrivaled visibility with USB device control.
  • Simplify your host firewall management.
  • Receive real-time insights with automated threat intelligence.
Request free trial