tinba | ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4 | Triage

Submit
Reports

Overview

overview

Static

static

ded7380f67...e4.exe

windows7_x64

ded7380f67...e4.exe

windows10_x64

Sharing

General

Target

ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4
Size

98KB
Sample

210508-kyxv5rlp4x
MD5

c5d1d7de55e78309930a4e436cbba881
SHA1

fb9ecb7c0910f86c1677ce77684a099095b91f23
SHA256

ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4
SHA512

c3971283eb2cf1ed4c078edb9468c480ad6ec60cf5b3fb118e30c2d0fe2f461b067fb4d60110101cf06a967ed81e1574d4a1513b7329ba05253b0bcd7f630b7a

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4.exe

Resource

win10v20210410

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4
- Size
  
  98KB
- MD5
  
  c5d1d7de55e78309930a4e436cbba881
- SHA1
  
  fb9ecb7c0910f86c1677ce77684a099095b91f23
- SHA256
  
  ded7380f6734bcb6a67569acc96254c76a8acd38db209b8b9cfe9730940f9fe4
- SHA512
  
  c3971283eb2cf1ed4c078edb9468c480ad6ec60cf5b3fb118e30c2d0fe2f461b067fb4d60110101cf06a967ed81e1574d4a1513b7329ba05253b0bcd7f630b7a
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy