{
	"id": "8d2f1dc6-6035-44a0-999f-347a69f9983a",
	"created_at": "2026-04-06T00:12:44.548126Z",
	"updated_at": "2026-04-10T13:12:47.886659Z",
	"deleted_at": null,
	"sha1_hash": "fa3c5434585f3d6e26e492871a39ba5d7e1f4852",
	"title": "Bizzaro (Malware Family)",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 35151,
	"plain_text": "Bizzaro (Malware Family)\r\nBy Fraunhofer FKIE\r\nArchived: 2026-04-05 20:30:28 UTC\r\nwin.bizarro (Back to overview)\r\nBizzaro\r\nKaspersky Labs characterizes Bizarro as yet another banking Trojan family originating from Brazil that is now\r\nfound in other regions of the world. They have seen users being targeted in Spain, Portugal, France and Italy.\r\nAttempts have now been made to steal credentials from customers of 70 banks from different European and South\r\nAmerican countries.\r\nReferences\r\n2021-05-17 ⋅ Kaspersky ⋅ GReAT\r\nBizarro banking Trojan expands its attacks to Europe\r\nBizzaro\r\nThere is no Yara-Signature yet.\r\nSource: https://malpedia.caad.fkie.fraunhofer.de/details/win.bizarro\r\nhttps://malpedia.caad.fkie.fraunhofer.de/details/win.bizarro\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://malpedia.caad.fkie.fraunhofer.de/details/win.bizarro"
	],
	"report_names": [
		"win.bizarro"
	],
	"threat_actors": [],
	"ts_created_at": 1775434364,
	"ts_updated_at": 1775826767,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/fa3c5434585f3d6e26e492871a39ba5d7e1f4852.pdf",
		"text": "https://archive.orkl.eu/fa3c5434585f3d6e26e492871a39ba5d7e1f4852.txt",
		"img": "https://archive.orkl.eu/fa3c5434585f3d6e26e492871a39ba5d7e1f4852.jpg"
	}
}