trickbot | 7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546 | Triage

Submit
Reports

Overview

overview

Static

static

7de3c3d55a...46.exe

windows7-x64

7de3c3d55a...46.exe

windows10-2004-x64

Sharing

General

Target

7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546
Size

456KB
Sample

220731-fqht9aadfm
MD5

a1b065e31a21a30b4d16b715b5b3419d
SHA1

92b1e1a7866695b27cf3c4da0f5610c949a7694e
SHA256

7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546
SHA512

331b65029339ae07b87a6a376e379f325bdf1ae9b1d26b6273e652193d01bbffd477e6fae0a2c4646005684955c91a22088ea43f10c7858539266d170fd39d12

Score

10^/10

trickbot banker evasion trojan

Static task

static1

Behavioral task

behavioral1

Sample

7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546.exe

Resource

win7-20220715-en

trickbot banker evasion trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546.exe

Resource

win10v2004-20220721-en

trickbot banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546
- Size
  
  456KB
- MD5
  
  a1b065e31a21a30b4d16b715b5b3419d
- SHA1
  
  92b1e1a7866695b27cf3c4da0f5610c949a7694e
- SHA256
  
  7de3c3d55a5b6472f8895f487262ee2a03f5eced32c8d72ee131e6bcaa10d546
- SHA512
  
  331b65029339ae07b87a6a376e379f325bdf1ae9b1d26b6273e652193d01bbffd477e6fae0a2c4646005684955c91a22088ea43f10c7858539266d170fd39d12
Score

10^/10

trickbot banker evasion trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Executes dropped EXE
- Stops running service(s)
  evasion
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Service Stop

Tasks

static1

behavioral1

trickbotbankerevasiontrojan

behavioral2

trickbotbankertrojan

© 2018-2024

Terms | Privacy