trickbot | 8bf9564b2c01286e373eaa576d0cceb44b3e7adec958ceb8ba7b7115fa2f0586 | Triage

Submit
Reports

Overview

overview

Static

static

1

5d967f83e0...18.exe

windows7-x64

5d967f83e0...18.exe

windows10-2004-x64

Sharing

General

Target

5d967f83e0c981fccc0a0dc725c13e17_JaffaCakes118
Size

774KB
Sample

240520-g1mfvsff8t
MD5

5d967f83e0c981fccc0a0dc725c13e17
SHA1

7e1a3b770c6abcff322ba27f975559f71e97ff3c
SHA256

8bf9564b2c01286e373eaa576d0cceb44b3e7adec958ceb8ba7b7115fa2f0586
SHA512

eb68556a805b584dc385a4cb1941198085bf391a011bfcc54ca40b2388e0e10e77b8fa02b418145a9eecf385187fd34ff0f93e72ebd0c4ce0e8f9a67013b642d
SSDEEP

12288:AYcWjXkAglfMCGqnjChEvv+t9BjGfIDD0A/s7fYWjieKd2/ZB+e:ARxlfMCBjmfBds7YWFZBr

Score

10^/10

trickbot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

5d967f83e0c981fccc0a0dc725c13e17_JaffaCakes118.exe

Resource

win7-20240220-en

trickbot banker trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5d967f83e0c981fccc0a0dc725c13e17_JaffaCakes118.exe

Resource

win10v2004-20240426-en

trickbot banker trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  5d967f83e0c981fccc0a0dc725c13e17_JaffaCakes118
- Size
  
  774KB
- MD5
  
  5d967f83e0c981fccc0a0dc725c13e17
- SHA1
  
  7e1a3b770c6abcff322ba27f975559f71e97ff3c
- SHA256
  
  8bf9564b2c01286e373eaa576d0cceb44b3e7adec958ceb8ba7b7115fa2f0586
- SHA512
  
  eb68556a805b584dc385a4cb1941198085bf391a011bfcc54ca40b2388e0e10e77b8fa02b418145a9eecf385187fd34ff0f93e72ebd0c4ce0e8f9a67013b642d
- SSDEEP
  
  12288:AYcWjXkAglfMCGqnjChEvv+t9BjGfIDD0A/s7fYWjieKd2/ZB+e:ARxlfMCBjmfBds7YWFZBr
Score

10^/10

trickbot banker trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Trickbot x86 loader
  Detected Trickbot's x86 loader that unpacks the x86 payload.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankertrojan

behavioral2

trickbotbankertrojan

© 2018-2024

Terms | Privacy