tinba | ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314 | Triage

Submit
Reports

Overview

overview

Static

static

ac7e6b5d4c...14.exe

windows7_x64

ac7e6b5d4c...14.exe

windows10_x64

Sharing

General

Target

ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314
Size

98KB
Sample

210511-18wa3v4k1s
MD5

ec3ea60e8072a0f8c30929420e4f34a4
SHA1

87f37ffb021167f2e788c3784d92a098aca98391
SHA256

ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314
SHA512

4a9253e50ae9751f19eaba189ab10d21d6981f99f0e98421506bde17beca8b4a40873593dbbaa2e91b30616c634991aec32b2f3727ad36db3d0032be0db50f02

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314.exe

Resource

win7v20210408

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314.exe

Resource

win10v20210408

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314
- Size
  
  98KB
- MD5
  
  ec3ea60e8072a0f8c30929420e4f34a4
- SHA1
  
  87f37ffb021167f2e788c3784d92a098aca98391
- SHA256
  
  ac7e6b5d4c5e8eacdb84fc1cdd7222ba56f1014c6bb29c3c69962e6997d3a314
- SHA512
  
  4a9253e50ae9751f19eaba189ab10d21d6981f99f0e98421506bde17beca8b4a40873593dbbaa2e91b30616c634991aec32b2f3727ad36db3d0032be0db50f02
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy