trickbot | 13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6 | Triage

Submit
Reports

Overview

overview

Static

static

13d0a83f88...e6.exe

windows7_x64

13d0a83f88...e6.exe

windows10_x64

Sharing

General

Target

13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6
Size

500KB
Sample

220128-x1drqabdaq
MD5

5d4a7c63fde057653ddd0cafd1d42f4f
SHA1

a00e355e1b1328e7198530a533a3db12a55cf384
SHA256

13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6
SHA512

42e8e4ad1cca92576a5d51b9d3bed0321298454e4da70922cac91ee45ce778777bfb248cd84c273b083357f7f4555cd1f0dbbaffe76bb424f9f143d1cf453a80

Score

10^/10

trickbot trgt889 banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6.exe

Resource

win7-en-20211208

trickbot trgt889 banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6.exe

Resource

win10-en-20211208

trickbot trgt889 banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

trickbot

Version

1000479

Botnet

trgt889

C2

192.3.104.46:443

23.94.233.210:443

172.82.152.126:443

192.3.247.11:443

202.29.215.114:449

Attributes

autorun
Control:GetSystemInfo
Name:systeminfo
Name:pwgrab

ecc_pubkey.base64

Targets

- Target
  
  13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6
- Size
  
  500KB
- MD5
  
  5d4a7c63fde057653ddd0cafd1d42f4f
- SHA1
  
  a00e355e1b1328e7198530a533a3db12a55cf384
- SHA256
  
  13d0a83f88baf5df82809d5ddc119f7075f5dd354b0d53af452f1282875326e6
- SHA512
  
  42e8e4ad1cca92576a5d51b9d3bed0321298454e4da70922cac91ee45ce778777bfb248cd84c273b083357f7f4555cd1f0dbbaffe76bb424f9f143d1cf453a80
Score

10^/10

trickbot trgt889 banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

trickbottrgt889bankertrojan

behavioral2

trickbottrgt889bankertrojan

© 2018-2024

Terms | Privacy