trickbot

General

Target

f19f135e7f8785f2aa1a6351dcc420194d99b2f69e5323c99b24dcbf6a7ba632.zip
Size

430KB
Sample

210505-8r2awq5bfa
MD5

e12cc6e6a316ba004dcb8c33b646f72f
SHA1

6dbea6e689806a7d48f17cac3ae5fd3edb5b9528
SHA256

be264805b4c9c8e95f45dac417fefb8f63226508678e3750b4bd0ee0f4f1f601
SHA512

585ae7b14c739c97b28e50896af1b1c506a1d2d1040e2d781bba8f55b4706502d80e262c8a4a71c5027bb2558dede392afb8c79288bee59a5c0db555626fe30f

Score

10^/10

Malware Config

Extracted

Family

trickbot

Version

2000029

Botnet

tot92

C2

103.66.72.217:443

117.252.68.211:443

103.124.173.35:443

115.73.211.230:443

117.54.250.246:443

131.0.112.122:443

102.176.221.78:443

181.176.161.143:443

154.79.251.172:443

103.111.199.76:443

103.54.41.193:443

154.79.244.182:443

154.79.245.158:443

139.255.116.42:443

178.254.161.250:443

178.134.47.166:443

158.181.179.229:443

103.90.197.33:443

109.207.165.40:443

178.72.192.20:443

Attributes

autorun
Name:pwgrabb
Name:pwgrabc

ecc_pubkey.base64

Targets

- Target
  
  f19f135e7f8785f2aa1a6351dcc420194d99b2f69e5323c99b24dcbf6a7ba632.exe
- Size
  
  812KB
- MD5
  
  dbf959510d307852805901b7e0dd6c17
- SHA1
  
  2b23fad35eddc44df7eca6ddcc7a904b7e317fc5
- SHA256
  
  f19f135e7f8785f2aa1a6351dcc420194d99b2f69e5323c99b24dcbf6a7ba632
- SHA512
  
  3b2173af8a126472548729fccc41c113886a1c8a98295140d8746616c39a08e64c393a5d90b72dbfbf08a1b0235578014292e6b5fc19ba06e2a239e7a35ffff7
Score

10^/10

trickbot tot92 banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2