trickbot | c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6 | Triage

Submit
Reports

Overview

overview

Static

static

c213f69f07...f6.exe

windows7-x64

c213f69f07...f6.exe

windows10-2004-x64

Sharing

General

Target

c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6
Size

162KB
Sample

220731-flnjyahbg7
MD5

a0565dc0bb68fd8c0437d5e368d7de23
SHA1

68e17b0cb0a8f48d77f4923a42584ad867132f7a
SHA256

c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6
SHA512

630781b22a9c231155ed82a94f6ff06fba9582a3bc036e821f875149f468680bdee5e8cf3f09a4b5c184d439ea1abfed5b420d7cef06b2550f2fcdb4f9017024

Score

10^/10

trickbot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6.exe

Resource

win7-20220718-en

trickbot banker trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6.exe

Resource

win10v2004-20220721-en

trickbot banker trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6
- Size
  
  162KB
- MD5
  
  a0565dc0bb68fd8c0437d5e368d7de23
- SHA1
  
  68e17b0cb0a8f48d77f4923a42584ad867132f7a
- SHA256
  
  c213f69f07e55e9934541c28d10b498d067def4936d0ffed342b9f8d052e20f6
- SHA512
  
  630781b22a9c231155ed82a94f6ff06fba9582a3bc036e821f875149f468680bdee5e8cf3f09a4b5c184d439ea1abfed5b420d7cef06b2550f2fcdb4f9017024
Score

10^/10

trickbot banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

trickbotbankertrojan

behavioral2

trickbotbankertrojan

© 2018-2024

Terms | Privacy