trickbot | 3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e | Triage

Submit
Reports

Overview

overview

Static

static

3ff628ab4a...3e.exe

windows7_x64

1

3ff628ab4a...3e.exe

windows10-2004_x64

Sharing

General

Target

3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e
Size

363KB
Sample

220630-wdcepsefal
MD5

0dc94f956e517ea69f4a3cd623bebb59
SHA1

0c8791cc4ef4e78cbbce018a0774eeb8e5bb3e76
SHA256

3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e
SHA512

6f2c2c23d4b55b01e7fbc2eab602c0265adc27026b9e587bef7e0003686c43e2639637623dd40be38e5fc9f798024c5cedc3a8dc762d9a4c166616c29cf86fea

Score

10^/10

trickbot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e.exe

Resource

win10v2004-20220414-en

trickbot banker trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e
- Size
  
  363KB
- MD5
  
  0dc94f956e517ea69f4a3cd623bebb59
- SHA1
  
  0c8791cc4ef4e78cbbce018a0774eeb8e5bb3e76
- SHA256
  
  3ff628ab4a53cb24b53120890bdd6847e962bc6a42f5d4d6aed1e23b38850a3e
- SHA512
  
  6f2c2c23d4b55b01e7fbc2eab602c0265adc27026b9e587bef7e0003686c43e2639637623dd40be38e5fc9f798024c5cedc3a8dc762d9a4c166616c29cf86fea
Score

10^/10

trickbot banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Executes dropped EXE
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

trickbotbankertrojan

© 2018-2024

Terms | Privacy