General

  • Target

    NEAS.3748f49a814add865524c9a8d8d56df0.exe

  • Size

    45KB

  • Sample

    231103-q4fxxsbf2z

  • MD5

    3748f49a814add865524c9a8d8d56df0

  • SHA1

    593cb0e6da3de2109cede4ccd5586418a3e167d6

  • SHA256

    547478771a243352e2a5382c52c98178dea3386d5dc958d2b48120a11486732e

  • SHA512

    15b843000744059899269f9afe104acfcc0c816076af0da3d525be00f058650f39a11b75430d6c3f0a6e9ecf1e3d35ef85451247dc7954b4a11b99aa2e3fbab1

  • SSDEEP

    768:yhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:+sWE9N5dFu53dsniQaB/xZ14n7zIF+qr

Malware Config

Targets

    • Target

      NEAS.3748f49a814add865524c9a8d8d56df0.exe

    • Size

      45KB

    • MD5

      3748f49a814add865524c9a8d8d56df0

    • SHA1

      593cb0e6da3de2109cede4ccd5586418a3e167d6

    • SHA256

      547478771a243352e2a5382c52c98178dea3386d5dc958d2b48120a11486732e

    • SHA512

      15b843000744059899269f9afe104acfcc0c816076af0da3d525be00f058650f39a11b75430d6c3f0a6e9ecf1e3d35ef85451247dc7954b4a11b99aa2e3fbab1

    • SSDEEP

      768:yhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:+sWE9N5dFu53dsniQaB/xZ14n7zIF+qr

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks