trickbot | 9cf0c717fd232f33094c910a5eced0de3e079579c3473eba70fcebc5ca196aa8 | Triage

Submit
Reports

Overview

overview

Static

static

3

5f3d2f1ec4...18.exe

windows7-x64

5f3d2f1ec4...18.exe

windows10-2004-x64

Sharing

General

Target

5f3d2f1ec4605fffb25f510e6f1f5a9c_JaffaCakes118
Size

448KB
Sample

240520-qdks7abg52
MD5

5f3d2f1ec4605fffb25f510e6f1f5a9c
SHA1

325fdc046a433f15b631eeb64edd46a6eb596ce1
SHA256

9cf0c717fd232f33094c910a5eced0de3e079579c3473eba70fcebc5ca196aa8
SHA512

2f28723d2e58a58b1a9f32e4c2bc96a7357c70fe2dc180c3ee6602761401da5837b173de6348ea1bd831cce73989d5ffbe08bdc0e89c966c9bb4babba1c13936
SSDEEP

12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCxU:4xBAiAHwfz1

Score

10^/10

trickbot banker dave trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5f3d2f1ec4605fffb25f510e6f1f5a9c_JaffaCakes118.exe

Resource

win7-20240508-en

trickbot banker dave trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

5f3d2f1ec4605fffb25f510e6f1f5a9c_JaffaCakes118.exe

Resource

win10v2004-20240508-en

trickbot banker dave trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  5f3d2f1ec4605fffb25f510e6f1f5a9c_JaffaCakes118
- Size
  
  448KB
- MD5
  
  5f3d2f1ec4605fffb25f510e6f1f5a9c
- SHA1
  
  325fdc046a433f15b631eeb64edd46a6eb596ce1
- SHA256
  
  9cf0c717fd232f33094c910a5eced0de3e079579c3473eba70fcebc5ca196aa8
- SHA512
  
  2f28723d2e58a58b1a9f32e4c2bc96a7357c70fe2dc180c3ee6602761401da5837b173de6348ea1bd831cce73989d5ffbe08bdc0e89c966c9bb4babba1c13936
- SSDEEP
  
  12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCxU:4xBAiAHwfz1
Score

10^/10

trickbot banker dave trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Dave packer
  Detects executable using a packer named 'Dave' by the community, based on a string at the end.
  dave
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankerdavetrojan

behavioral2

trickbotbankerdavetrojan

© 2018-2024

Terms | Privacy