trickbot | bfa088b1ea61efa003343b09a536eaffa12bc90fb612f8ebcb8182785bb6eb16 | Triage

Sharing

General

Target

Froggies.exe
Size

404KB
Sample

201114-k8xasrnqxe
MD5

c99e8ea05346c198782e4c66f01d7c10
SHA1

2ec006693189d6d9f9e1d1d0a244ea7086c83641
SHA256

bfa088b1ea61efa003343b09a536eaffa12bc90fb612f8ebcb8182785bb6eb16
SHA512

7c4137c51c5ae5bf45c43d5c0685075d96e674115534735df1407e2326d9f07ff5992f28d5c09b10497b90ff9fc6fe5ec624495ee077455067f23934c6f998d3

Score

10^/10

trickbot fra1 banker trojan

Malware Config

Extracted

Family

trickbot

Version

100002

Botnet

fra1

C2

195.123.240.138:443

162.212.158.129:443

144.172.64.26:443

62.108.37.145:443

91.200.103.193:443

194.5.249.195:443

195.123.240.18:443

Attributes

autorun
Name:pwgrab

ecc_pubkey.base64

Targets

- Target
  
  Froggies.exe
- Size
  
  404KB
- MD5
  
  c99e8ea05346c198782e4c66f01d7c10
- SHA1
  
  2ec006693189d6d9f9e1d1d0a244ea7086c83641
- SHA256
  
  bfa088b1ea61efa003343b09a536eaffa12bc90fb612f8ebcb8182785bb6eb16
- SHA512
  
  7c4137c51c5ae5bf45c43d5c0685075d96e674115534735df1407e2326d9f07ff5992f28d5c09b10497b90ff9fc6fe5ec624495ee077455067f23934c6f998d3
Score

10^/10

trickbot fra1 banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

trickbotfra1bankertrojan

behavioral2