trickbot | 648d3b8639ff54b8741ec84898b213836594539de6f0c11a6c9f34dccf5e79fe | Triage

Sharing

General

Target

1.exe
Size

400KB
Sample

201117-g51nsdzsxj
MD5

c5c8b64f2f89c074396266be3424e758
SHA1

3a5ade966e33a398b135c840064eb2a4e5fea761
SHA256

648d3b8639ff54b8741ec84898b213836594539de6f0c11a6c9f34dccf5e79fe
SHA512

aeff3fe19e50275ec851c762c0f124f70068d63230bc34cd66b67e34c102e079f1ce369dccb8ab506eb29f8f0eebcc83f61abf202e21cfffde40c7cbe6b38ff7

Score

10^/10

trickbot yas2 banker trojan

Malware Config

Extracted

Family

trickbot

Version

100002

Botnet

yas2

C2

195.123.240.138:443

162.212.158.129:443

144.172.64.26:443

62.108.37.145:443

91.200.103.193:443

194.5.249.195:443

195.123.240.18:443

Attributes

autorun
Name:pwgrab

ecc_pubkey.base64

Targets

- Target
  
  1.exe
- Size
  
  400KB
- MD5
  
  c5c8b64f2f89c074396266be3424e758
- SHA1
  
  3a5ade966e33a398b135c840064eb2a4e5fea761
- SHA256
  
  648d3b8639ff54b8741ec84898b213836594539de6f0c11a6c9f34dccf5e79fe
- SHA512
  
  aeff3fe19e50275ec851c762c0f124f70068d63230bc34cd66b67e34c102e079f1ce369dccb8ab506eb29f8f0eebcc83f61abf202e21cfffde40c7cbe6b38ff7
Score

10^/10

trickbot yas2 banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

trickbotyas2bankertrojan

behavioral2

trickbotyas2bankertrojan