tinba | c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1 | Triage

Submit
Reports

Overview

overview

Static

static

c0b717edab...d1.exe

windows7_x64

c0b717edab...d1.exe

windows10_x64

Sharing

General

Target

c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1
Size

128KB
Sample

210513-9jjegcmq26
MD5

bcaf9b6c070ec54cea97c5bf6033b2d6
SHA1

a3ff666fd3f884c34a93dbb53e39cf02c3eab61d
SHA256

c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1
SHA512

c3c9ac31c28d3d783255aa7c6f0ed4159c694b5c9bcd7a5461d00cfb80bee085bf466daef757179abb50c93be08293e7d627621021c902fcf85433655b92b1c9

Score

10^/10

tinba banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1.exe

Resource

win7v20210410

tinba banker persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1.exe

Resource

win10v20210410

tinba banker persistence trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1
- Size
  
  128KB
- MD5
  
  bcaf9b6c070ec54cea97c5bf6033b2d6
- SHA1
  
  a3ff666fd3f884c34a93dbb53e39cf02c3eab61d
- SHA256
  
  c0b717edabb4e5ef8f7b648bea21bf39f6a33966f596d432c6f2c40684aef0d1
- SHA512
  
  c3c9ac31c28d3d783255aa7c6f0ed4159c694b5c9bcd7a5461d00cfb80bee085bf466daef757179abb50c93be08293e7d627621021c902fcf85433655b92b1c9
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy