Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-02 11:24:18 UTC
Home > List all groups > List all tools > List all groups using tool Janeleiro
 Tool: Janeleiro
Names Janeleiro
Category Malware
Type Banking trojan, Backdoor, Keylogger, Info stealer, Credential stealer
Description
(ESET) This new threat, which we’ve named Janeleiro, attempts to deceive its victims with
pop-up windows designed to look like the websites of some of the biggest banks in Brazil.
These pop-ups contain fake forms, aiming to trick the malware’s victims into entering their
banking credentials and personal information that the malware captures and exfiltrates to its
C&C servers. Janeleiro follows exactly the same blueprint for the core implementation of this
technique as some of the most prominent malware families targeting the region: Mekotio,
Grandoreiro, Mekotio, Amavaldo, and Vadokrist, among others.
Information
Malpedia Last change to this tool card: 28 December 2021
Download this tool card in JSON format
All groups using tool Janeleiro
Changed Name Country Observed
Unknown groups
 _[ Interesting malware not linked to an actor yet ]_
1 group listed (0 APT, 0 other, 1 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=126aa526-7e9f-411a-a810-aa1e93d659a2
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=126aa526-7e9f-411a-a810-aa1e93d659a2
Page 1 of 1