trickbot | cf580a67c137ab820741ecbe09f91751744543d137991dc4e977c8bdef47041c | Triage

Submit
Reports

Overview

overview

Static

static

3

18ebdf3b48...18.exe

windows7-x64

18ebdf3b48...18.exe

windows10-2004-x64

Sharing

General

Target

18ebdf3b484e37d31f967cd7278fce59_JaffaCakes118
Size

448KB
Sample

240505-xrf6gsae3s
MD5

18ebdf3b484e37d31f967cd7278fce59
SHA1

bd488e77bdbf80821f1221b470d778337763fa4c
SHA256

cf580a67c137ab820741ecbe09f91751744543d137991dc4e977c8bdef47041c
SHA512

416f3a3d93df6d185acdc579d037df38f77493868f440b3ebc967b9ec986f5f991738a6a088def4a26285318c5cad061a61a09de6f07439c49ecad609cde559c
SSDEEP

12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCx:4xBAiAHwfz

Score

10^/10

trickbot banker dave trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

18ebdf3b484e37d31f967cd7278fce59_JaffaCakes118.exe

Resource

win7-20240221-en

trickbot banker dave trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

18ebdf3b484e37d31f967cd7278fce59_JaffaCakes118.exe

Resource

win10v2004-20240226-en

trickbot banker dave trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  18ebdf3b484e37d31f967cd7278fce59_JaffaCakes118
- Size
  
  448KB
- MD5
  
  18ebdf3b484e37d31f967cd7278fce59
- SHA1
  
  bd488e77bdbf80821f1221b470d778337763fa4c
- SHA256
  
  cf580a67c137ab820741ecbe09f91751744543d137991dc4e977c8bdef47041c
- SHA512
  
  416f3a3d93df6d185acdc579d037df38f77493868f440b3ebc967b9ec986f5f991738a6a088def4a26285318c5cad061a61a09de6f07439c49ecad609cde559c
- SSDEEP
  
  12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCx:4xBAiAHwfz
Score

10^/10

trickbot banker dave trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Dave packer
  Detects executable using a packer named 'Dave' by the community, based on a string at the end.
  dave
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankerdavetrojan

behavioral2

trickbotbankerdavetrojan

© 2018-2025

Terms | Privacy