trickbot

General

Target

c0e07efbb0dd361490426661fe992f6f
Size

692KB
Sample

240311-sbaxbahf89
MD5

c0e07efbb0dd361490426661fe992f6f
SHA1

cf313578cee3999767c43dd28c77835957c033c6
SHA256

7c9f494ed4397ccedb3d5c8a10235669a31ae7eb79423b6fa785d141cb6d183d
SHA512

3690eaf62405f4bc1ae50c6f2ca6814cd26d529417cbf653f049a96537eab156d420161a93f223048763a5153d84c654236101fb8ecd7b51b9143e0b128f10bb
SSDEEP

6144:53v6kfEPxw1S5sEMeJJFoZbNFcI+rvezdKH5FYMkxsZSdTs8Xc5n4:5/BEP+Qy7eJJa2qKZFhkxsZSdw8Xc5n

Score

10^/10

Malware Config

Extracted

Family

trickbot

Version

100018

Botnet

rob116

C2

38.110.103.124:443

185.56.76.28:443

204.138.26.60:443

60.51.47.65:443

74.85.157.139:443

68.69.26.182:443

38.110.103.136:443

38.110.103.18:443

138.34.28.219:443

185.56.76.94:443

217.115.240.248:443

24.162.214.166:443

80.15.2.105:443

154.58.23.192:443

38.110.100.104:443

45.36.99.184:443

185.56.76.108:443

185.56.76.72:443

138.34.28.35:443

97.83.40.67:443

Attributes

autorun
Name:pwgrabb
Name:pwgrabc

ecc_pubkey.base64

Targets

- Target
  
  c0e07efbb0dd361490426661fe992f6f
- Size
  
  692KB
- MD5
  
  c0e07efbb0dd361490426661fe992f6f
- SHA1
  
  cf313578cee3999767c43dd28c77835957c033c6
- SHA256
  
  7c9f494ed4397ccedb3d5c8a10235669a31ae7eb79423b6fa785d141cb6d183d
- SHA512
  
  3690eaf62405f4bc1ae50c6f2ca6814cd26d529417cbf653f049a96537eab156d420161a93f223048763a5153d84c654236101fb8ecd7b51b9143e0b128f10bb
- SSDEEP
  
  6144:53v6kfEPxw1S5sEMeJJFoZbNFcI+rvezdKH5FYMkxsZSdTs8Xc5n4:5/BEP+Qy7eJJa2qKZFhkxsZSdw8Xc5n
Score

10^/10

trickbot rob116 banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2