tinba | cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83 | Triage

Submit
Reports

Overview

overview

Static

static

cfd2e3ae5e...83.exe

windows7_x64

cfd2e3ae5e...83.exe

windows10_x64

Sharing

General

Target

cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83
Size

98KB
Sample

210505-el9pnbqjts
MD5

d3e18555a8af529c861225153fec365a
SHA1

0d569925bd67e403e305ebfea64a9925a45c2139
SHA256

cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83
SHA512

659e5ae0cb73aef67cd85034ee088e380ee4dcc4c3e4f4936e0ee8e87786ea94dfe2a9e45bdbb21f4278b5e3aad22c3d44b582ef16a549a0a2d6fb54c152e875

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83.exe

Resource

win10v20210410

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83
- Size
  
  98KB
- MD5
  
  d3e18555a8af529c861225153fec365a
- SHA1
  
  0d569925bd67e403e305ebfea64a9925a45c2139
- SHA256
  
  cfd2e3ae5e1ce93f945ce9f8dff2a40cb1d9b42c792c78538afdb0156a28cf83
- SHA512
  
  659e5ae0cb73aef67cd85034ee088e380ee4dcc4c3e4f4936e0ee8e87786ea94dfe2a9e45bdbb21f4278b5e3aad22c3d44b582ef16a549a0a2d6fb54c152e875
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy