Overview

overview

10

Static

static

3

2bba5dfc01...cs.exe

windows7-x64

10

2bba5dfc01...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2bba5dfc012d4eacb69e411d4314ac30_NeikiAnalytics.exe

  • Size

    1.0MB

  • Sample

    240516-y9531afa93

  • MD5

    2bba5dfc012d4eacb69e411d4314ac30

  • SHA1

    a41eef8e3c27032c172fe50ee0b6fdd3969a5188

  • SHA256

    e6d62be68e9905426cbf6320af06e22b8fd94badd68e985d4d47eeb5f660a8ea

  • SHA512

    1bae40db6bfa51445055b0621f77a4cd35841ea1073f880977628f9fc2adac7269e709e77a2f43fb56130a4fd5bdd99c35567bc9d93bd532a5a09ea801062bab

  • SSDEEP

    24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNXfpR:E5aIwC+AUBsWsXN

Score
10/10
trickbotbankerevasionexecutiontrojan

Malware Config

Targets

    • Target

      2bba5dfc012d4eacb69e411d4314ac30_NeikiAnalytics.exe

    • Size

      1.0MB

    • MD5

      2bba5dfc012d4eacb69e411d4314ac30

    • SHA1

      a41eef8e3c27032c172fe50ee0b6fdd3969a5188

    • SHA256

      e6d62be68e9905426cbf6320af06e22b8fd94badd68e985d4d47eeb5f660a8ea

    • SHA512

      1bae40db6bfa51445055b0621f77a4cd35841ea1073f880977628f9fc2adac7269e709e77a2f43fb56130a4fd5bdd99c35567bc9d93bd532a5a09ea801062bab

    • SSDEEP

      24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNXfpR:E5aIwC+AUBsWsXN

    Score
    10/10
    trickbotbankerevasionexecutiontrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Stops running service(s)

      evasionexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks