trickbot | 7ec2cd22d75e70cbfa45a5802d4f1abec492285af1550777aec2cf0588874988 | Triage

Submit
Reports

Overview

overview

Static

static

3

d06691321d...18.exe

windows7-x64

d06691321d...18.exe

windows10-2004-x64

Sharing

General

Target

d06691321d48fd7fe64b4b2c7b78c1d0_JaffaCakes118
Size

448KB
Sample

240405-lwebxagh7v
MD5

d06691321d48fd7fe64b4b2c7b78c1d0
SHA1

e91522b0326daadc4acf15b5a1044ad49eb99690
SHA256

7ec2cd22d75e70cbfa45a5802d4f1abec492285af1550777aec2cf0588874988
SHA512

f8549a8380d3f0d777a5f129bd407f3cb8fe96363e9fd82f00a9eb83f9c45b4367693d4dec8af45a9a97ef987aa15a2a63aee2dd0325b7b66d6201c058b2d580
SSDEEP

12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCxw:4xBAiAHwfzb

Score

10^/10

trickbot banker dave trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d06691321d48fd7fe64b4b2c7b78c1d0_JaffaCakes118.exe

Resource

win7-20240221-en

trickbot banker dave trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

d06691321d48fd7fe64b4b2c7b78c1d0_JaffaCakes118.exe

Resource

win10v2004-20240319-en

trickbot banker dave trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  d06691321d48fd7fe64b4b2c7b78c1d0_JaffaCakes118
- Size
  
  448KB
- MD5
  
  d06691321d48fd7fe64b4b2c7b78c1d0
- SHA1
  
  e91522b0326daadc4acf15b5a1044ad49eb99690
- SHA256
  
  7ec2cd22d75e70cbfa45a5802d4f1abec492285af1550777aec2cf0588874988
- SHA512
  
  f8549a8380d3f0d777a5f129bd407f3cb8fe96363e9fd82f00a9eb83f9c45b4367693d4dec8af45a9a97ef987aa15a2a63aee2dd0325b7b66d6201c058b2d580
- SSDEEP
  
  12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCxw:4xBAiAHwfzb
Score

10^/10

trickbot banker dave trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Dave packer
  Detects executable using a packer named 'Dave' by the community, based on a string at the end.
  dave
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

trickbotbankerdavetrojan

behavioral2

trickbotbankerdavetrojan

© 2018-2024

Terms | Privacy