tinba | 990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f | Triage

Submit
Reports

Overview

overview

Static

static

990c8f86de...4f.exe

windows7_x64

990c8f86de...4f.exe

windows10_x64

Sharing

General

Target

990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f
Size

98KB
Sample

210511-mbq6556dln
MD5

ee51ef645f1a1b2915d486577670912a
SHA1

52f35e0ce3c11a0cae937cf24b58f42b5bd819b0
SHA256

990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f
SHA512

6f84dad1d70750d380221d9630d8f72756ee2f4cbb31838a9c726c3f89036e7f314572f2ada660fe7313e785991cf5ae19f41c83f7b3e58df157b28959b1b4f0

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f.exe

Resource

win10v20210410

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f
- Size
  
  98KB
- MD5
  
  ee51ef645f1a1b2915d486577670912a
- SHA1
  
  52f35e0ce3c11a0cae937cf24b58f42b5bd819b0
- SHA256
  
  990c8f86de2171c0296ee222d7bf1a43efaec8a0653a6c042579b1317b55564f
- SHA512
  
  6f84dad1d70750d380221d9630d8f72756ee2f4cbb31838a9c726c3f89036e7f314572f2ada660fe7313e785991cf5ae19f41c83f7b3e58df157b28959b1b4f0
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy