tinba | 27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8 | Triage

Submit
Reports

Overview

overview

Static

static

27f56fc4e1...d8.exe

windows7_x64

27f56fc4e1...d8.exe

windows10_x64

Sharing

General

Target

27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8
Size

98KB
Sample

210508-j4aej8ax66
MD5

b0409d46fa460781fd20c3725eb4b799
SHA1

7ad7aa0c766dcf186771abdb632c1d0f259c06a0
SHA256

27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8
SHA512

2b017756cfdf548a3e278f804a71aa63cb04e08dc5aad0d0283f73410131d6ff51c4557b68d544e54e64511e59764da89ef6fe6ce0d679fd3b38702728b775da

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8.exe

Resource

win10v20210408

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8
- Size
  
  98KB
- MD5
  
  b0409d46fa460781fd20c3725eb4b799
- SHA1
  
  7ad7aa0c766dcf186771abdb632c1d0f259c06a0
- SHA256
  
  27f56fc4e195bb6fb0a392aceb0218a21d7eaecc721089234d33b3b5b0f6c8d8
- SHA512
  
  2b017756cfdf548a3e278f804a71aa63cb04e08dc5aad0d0283f73410131d6ff51c4557b68d544e54e64511e59764da89ef6fe6ce0d679fd3b38702728b775da
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy