trickbot | cdff04219ecd324b8585e309b4715ccd969d81f752caeb8338a9003ba50257c5 | Triage

Submit
Reports

Overview

overview

Static

static

3

66f6b531f6...18.exe

windows7-x64

66f6b531f6...18.exe

windows10-2004-x64

Sharing

General

Target

66f6b531f6b28c7da4594944afdab491_JaffaCakes118
Size

364KB
Sample

240522-mmn1esca6w
MD5

66f6b531f6b28c7da4594944afdab491
SHA1

40a5158ee2eea291ac910f23fe44b52efdb787ed
SHA256

cdff04219ecd324b8585e309b4715ccd969d81f752caeb8338a9003ba50257c5
SHA512

258fd4aae703dc5f13443cc1818ffbb2a690d169c352c2b93c60778dd8da98dcffe53c37d897f1f2118fafdaa63e72914458403c57b59e5e8110ac4ff8fcdf2e
SSDEEP

6144:WBOO856a60r+UogID97/IXjBE7SL+MEXxtSbsP6ANb:WBOO3VKID90TBEhx4O6ab

Score

10^/10

trickbot banker dave trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

66f6b531f6b28c7da4594944afdab491_JaffaCakes118.exe

Resource

win7-20240221-en

trickbot banker dave trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

66f6b531f6b28c7da4594944afdab491_JaffaCakes118.exe

Resource

win10v2004-20240426-en

trickbot banker dave trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  66f6b531f6b28c7da4594944afdab491_JaffaCakes118
- Size
  
  364KB
- MD5
  
  66f6b531f6b28c7da4594944afdab491
- SHA1
  
  40a5158ee2eea291ac910f23fe44b52efdb787ed
- SHA256
  
  cdff04219ecd324b8585e309b4715ccd969d81f752caeb8338a9003ba50257c5
- SHA512
  
  258fd4aae703dc5f13443cc1818ffbb2a690d169c352c2b93c60778dd8da98dcffe53c37d897f1f2118fafdaa63e72914458403c57b59e5e8110ac4ff8fcdf2e
- SSDEEP
  
  6144:WBOO856a60r+UogID97/IXjBE7SL+MEXxtSbsP6ANb:WBOO3VKID90TBEhx4O6ab
Score

10^/10

trickbot banker dave trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Dave packer
  Detects executable using a packer named 'Dave' by the community, based on a string at the end.
  dave
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

trickbotbankerdavetrojan

behavioral2

trickbotbankerdavetrojan

© 2018-2024

Terms | Privacy