General
-
Target
df7d957c02423b804f18b71df13669e0_NEIKI
-
Size
798KB
-
Sample
240509-d2cq9sba67
-
MD5
df7d957c02423b804f18b71df13669e0
-
SHA1
6b036e51d20995c61d83bba899ef10ae8cf557b5
-
SHA256
96311437bea32a92b838984c075facdf86beed77376eac5dcd81c2ed671823dc
-
SHA512
d5f40b234e3906c7ed18a8d83b893c3a6d27374c1b0afbdcee7f09dbdd2d9ba7c16267b84884fc92ad1da3f598bd154a681e108a02bc1a478b09c9c20eaa9a51
-
SSDEEP
12288:zJB0lh5aILwtFPCfmAUt3r4DwpRrKO1YYVhiiNdvrsymrs:zQ5aILMCfmAUhrSO1YNWdvKrs
Malware Config
Targets
-
-
Target
df7d957c02423b804f18b71df13669e0_NEIKI
-
Size
798KB
-
MD5
df7d957c02423b804f18b71df13669e0
-
SHA1
6b036e51d20995c61d83bba899ef10ae8cf557b5
-
SHA256
96311437bea32a92b838984c075facdf86beed77376eac5dcd81c2ed671823dc
-
SHA512
d5f40b234e3906c7ed18a8d83b893c3a6d27374c1b0afbdcee7f09dbdd2d9ba7c16267b84884fc92ad1da3f598bd154a681e108a02bc1a478b09c9c20eaa9a51
-
SSDEEP
12288:zJB0lh5aILwtFPCfmAUt3r4DwpRrKO1YYVhiiNdvrsymrs:zQ5aILMCfmAUhrSO1YNWdvKrs
Score10/10-
Trickbot
Developed in 2016, TrickBot is one of the more recent banking Trojans.
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Stops running service(s)
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-