trickbot | baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca | Triage

Submit
Reports

Overview

overview

Static

static

baa80c291a...ca.exe

windows7-x64

baa80c291a...ca.exe

windows10-2004-x64

Sharing

General

Target

baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca
Size

422KB
Sample

220724-rwgpxsffe9
MD5

2fa5b98de882a2c9015efdcfdd88be65
SHA1

0a454b220eea65bd757acb937c0ed2e745e148fd
SHA256

baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca
SHA512

9e3a5483acaf0cb97eff62fad04c8c6887a1e660af6e54f18304dd9905d9dd4f601f1df016840a438f1c85cfc260537c562d0def99159082cf525d93456f3b66

Score

10^/10

trickbot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca.exe

Resource

win7-20220718-en

trickbot banker trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca.exe

Resource

win10v2004-20220722-en

trickbot banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca
- Size
  
  422KB
- MD5
  
  2fa5b98de882a2c9015efdcfdd88be65
- SHA1
  
  0a454b220eea65bd757acb937c0ed2e745e148fd
- SHA256
  
  baa80c291a9fbc8c5d70a0183385bed0b90d2792b8e5130cd399237d364c1fca
- SHA512
  
  9e3a5483acaf0cb97eff62fad04c8c6887a1e660af6e54f18304dd9905d9dd4f601f1df016840a438f1c85cfc260537c562d0def99159082cf525d93456f3b66
Score

10^/10

trickbot banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

trickbotbankertrojan

behavioral2

trickbotbankertrojan

© 2018-2024

Terms | Privacy