tinba | c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad | Triage

Submit
Reports

Overview

overview

Static

static

c881fa9559...ad.exe

windows7_x64

c881fa9559...ad.exe

windows10_x64

Sharing

General

Target

c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad
Size

136KB
Sample

210511-3b4exknzds
MD5

bac4f0041be169bfafa94fb4df5bce5e
SHA1

b8c9bfe9f2f0233b357920ef1ac0cff5b9e96bf0
SHA256

c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad
SHA512

cead2dd3ea9efc1b344b5ffef853dfbbbd24dffbe42f99aba6fc07e6330c341ea844241aca602c2447107cf8916470111bebe56de6e337fe7f948ea495f8bcff

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad.exe

Resource

win10v20210410

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad
- Size
  
  136KB
- MD5
  
  bac4f0041be169bfafa94fb4df5bce5e
- SHA1
  
  b8c9bfe9f2f0233b357920ef1ac0cff5b9e96bf0
- SHA256
  
  c881fa9559c8df01392a329140262fb4881668dc6384a1642df3c4db3dda50ad
- SHA512
  
  cead2dd3ea9efc1b344b5ffef853dfbbbd24dffbe42f99aba6fc07e6330c341ea844241aca602c2447107cf8916470111bebe56de6e337fe7f948ea495f8bcff
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy