trickbot | 3d7e0f641b27e8f207019def1604886886e89d830999b1fba716bd2e5f129f83 | Triage

Sharing

General

Target

5d3005735013696612984d06505d2a36_JaffaCakes118
Size

192KB
Sample

240520-e4t9rsbg34
MD5

5d3005735013696612984d06505d2a36
SHA1

36925ba38049f1ced2d538daf00bf013e77ebfac
SHA256

3d7e0f641b27e8f207019def1604886886e89d830999b1fba716bd2e5f129f83
SHA512

ee25d147dfb608df74a10e49193a6c695498409f60e7450b221cf60c7507030b71ea83b529a99bc1b75878a991115d2168bfdeb9dc8cda73753ac7768b53fac2
SSDEEP

3072:jMJy2qS7colT9HUcJRylD5W2xvqnqfmHwShqbfZFkzWWnkuMOP5NKQysIW4cX1:gJy2qS7NlT9rzy7W2JqqflhFKkuMOP53

Score

10^/10

trickbot banker trojan

Malware Config

Targets

- Target
  
  5d3005735013696612984d06505d2a36_JaffaCakes118
- Size
  
  192KB
- MD5
  
  5d3005735013696612984d06505d2a36
- SHA1
  
  36925ba38049f1ced2d538daf00bf013e77ebfac
- SHA256
  
  3d7e0f641b27e8f207019def1604886886e89d830999b1fba716bd2e5f129f83
- SHA512
  
  ee25d147dfb608df74a10e49193a6c695498409f60e7450b221cf60c7507030b71ea83b529a99bc1b75878a991115d2168bfdeb9dc8cda73753ac7768b53fac2
- SSDEEP
  
  3072:jMJy2qS7colT9HUcJRylD5W2xvqnqfmHwShqbfZFkzWWnkuMOP5NKQysIW4cX1:gJy2qS7NlT9rzy7W2JqqflhFKkuMOP53
Score

10^/10

trickbot banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankertrojan

behavioral2

trickbotbankertrojan