General

  • Target

    NEAS.f077f96f2cf99138a1fb8e388c639cd0_JC.exe

  • Size

    45KB

  • Sample

    231102-tfs45aee8z

  • MD5

    f077f96f2cf99138a1fb8e388c639cd0

  • SHA1

    08cef2e272840bbc60bd0825f02b0110187b27a7

  • SHA256

    3fa0d5bb788cc7ae14cbf786fa7a320f5fda02ac815cc1e13b42c503b776c860

  • SHA512

    3d1081ccb83d93840b4f57c6f4fd1eefa50136caa4ee64a9403a7a93bb5ad01006daadca684d96aa97bef3c5ed4cde1c0faa86312cc8288e3467a9fbd047605d

  • SSDEEP

    768:ThP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:FsWE9N5dFu53dsniQaB/xZ14n7zIF+qr

Malware Config

Targets

    • Target

      NEAS.f077f96f2cf99138a1fb8e388c639cd0_JC.exe

    • Size

      45KB

    • MD5

      f077f96f2cf99138a1fb8e388c639cd0

    • SHA1

      08cef2e272840bbc60bd0825f02b0110187b27a7

    • SHA256

      3fa0d5bb788cc7ae14cbf786fa7a320f5fda02ac815cc1e13b42c503b776c860

    • SHA512

      3d1081ccb83d93840b4f57c6f4fd1eefa50136caa4ee64a9403a7a93bb5ad01006daadca684d96aa97bef3c5ed4cde1c0faa86312cc8288e3467a9fbd047605d

    • SSDEEP

      768:ThP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:FsWE9N5dFu53dsniQaB/xZ14n7zIF+qr

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks