Overview

overview

10

Static

static

1

af42fbce8d...60.exe

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af42fbce8dce22d3d6846830142586a1961012e8ed9a4cefb0821a7676445060.zip

  • Size

    321KB

  • Sample

    230325-ymc4psgc5t

  • MD5

    f56e12f78114cc21b0828f904c8cea58

  • SHA1

    1a2e8aa8ec359bb830998d4538508a63c2198a1e

  • SHA256

    78c267bebcafbf43b0f334ba5105b0ee2f7977ba28ce1f8915570342dce2e573

  • SHA512

    5a7727d6fe67c6026f0f372041f1647a0f7e607216f50b8d2d216452c88fad35b3bd7f72b8c10a216f98af390e5e270ce76bc14cde6925cf32d80504edbfe13c

  • SSDEEP

    6144:1M6nQXN21SZwaF8aykx2NE08gKSZf7B5h84kmyNli3jqVGmGdSw8rBif4mHy:1tGN21SBaajf08gKSdR1kerzSw8rBifm

Score
10/10
trickbotbankertrojan

Malware Config

Targets

    • Target

      af42fbce8dce22d3d6846830142586a1961012e8ed9a4cefb0821a7676445060

    • Size

      475KB

    • MD5

      18a19c324963bb69a492accf4e9a7600

    • SHA1

      6602ce8086c8e90c1673201830f07bc365f1187b

    • SHA256

      af42fbce8dce22d3d6846830142586a1961012e8ed9a4cefb0821a7676445060

    • SHA512

      0754ca17b59e0c80495340562b5a4e3f635a78ef1453399b756123f3f07f09ed440ccd446c079997f3f6f78493278be7f6298a36123365912ad7002d907edce6

    • SSDEEP

      6144:jCdu2xwKm4poMGNnodOXzHdl+LTaY3V0Vnfg+1zRCNyzoXeEtKyBSn:jZOrpFLQbya3VowyntjSn

    Score
    10/10
    trickbotbankertrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks