0f3bfa748a771b5e6498d584c15e6995

General
Target

0f3bfa748a771b5e6498d584c15e6995

Size

168KB

Sample

201117-dtyhx8zs3x

Score
10 /10
MD5

9a386bbb2de614c64284f2bd63570ff0

SHA1

e3ed06a92cb6fb11b2351ce924350937159d0d16

SHA256

653c78ce95354e4c3e7a24d3d33de2eac505cc2fd943992c859418813469c4e8

SHA512

0668662532992a9dce3987ea18dd0745bf18bc09a8d2cdfb1a505db2c3b404f24736d5c52467e8af4c6a7725e19bdd80c934ea14a6d5b5c262cb8371e5e08c02

Malware Config
Targets
Target

0f3bfa748a771b5e6498d584c15e6995

MD5

9a386bbb2de614c64284f2bd63570ff0

Filesize

168KB

Score
10 /10
SHA1

e3ed06a92cb6fb11b2351ce924350937159d0d16

SHA256

653c78ce95354e4c3e7a24d3d33de2eac505cc2fd943992c859418813469c4e8

SHA512

0668662532992a9dce3987ea18dd0745bf18bc09a8d2cdfb1a505db2c3b404f24736d5c52467e8af4c6a7725e19bdd80c934ea14a6d5b5c262cb8371e5e08c02

Tags

Signatures

  • Tinba / TinyBanker

    Description

    Banking trojan which uses packet sniffing to steal data.

    Tags

  • Adds Run key to start application

    Tags

    TTPs

    Registry Run Keys / Startup Folder Modify Registry

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Discovery
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Privilege Escalation
                      Tasks

                      static1

                      behavioral1

                      10/10

                      behavioral2

                      10/10