FIN7’s Carbanak backdoor has been used in hundreds of successful, financially motivated cyberattacks in the past four years. FireEye researchers analyzed 100,000 lines of code and dozens of binaries. The malware uses a Windows mechanism called named pipes as a means of communication and coordination across all the threads, processes and plugins under the backdoor s control. It also allows for the possibility of sending commands to the malware using a local client without the use of a network more than dealing with binaries.
Source: https://threatpost.com/carbanak-source-code-complex-malware/144059/