Overview

overview

10

Static

static

3

7e09bc366e...18.exe

windows7-x64

10

7e09bc366e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7e09bc366ef86bf5c9f2b208caccf33d_JaffaCakes118

  • Size

    312KB

  • Sample

    240528-xpf3psgb8y

  • MD5

    7e09bc366ef86bf5c9f2b208caccf33d

  • SHA1

    9dca3af0b81d1357c86671b57e623a2b441113f5

  • SHA256

    fcff85d1738478a2ff510af0d6cc35f91deab5854fbe6790eb7c3c6ce528624f

  • SHA512

    fc0446d7f837d4f935da385ebefc769ed55f225c7c644e84e36c0b8bf14d093fb8d65c07b054bc7fa32ecf68ceaad8ed272a81b4dd7d88ee514298926d66ec4a

  • SSDEEP

    6144:01onzioSKdmypYj5KKwAI+6uRnb2HCG3AdUn4ih5sZ:0SzrSQK5/Iob2HpAdUn4ihiZ

Score
10/10
trickbotbankerevasionexecutiontrojan

Malware Config

Targets

    • Target

      7e09bc366ef86bf5c9f2b208caccf33d_JaffaCakes118

    • Size

      312KB

    • MD5

      7e09bc366ef86bf5c9f2b208caccf33d

    • SHA1

      9dca3af0b81d1357c86671b57e623a2b441113f5

    • SHA256

      fcff85d1738478a2ff510af0d6cc35f91deab5854fbe6790eb7c3c6ce528624f

    • SHA512

      fc0446d7f837d4f935da385ebefc769ed55f225c7c644e84e36c0b8bf14d093fb8d65c07b054bc7fa32ecf68ceaad8ed272a81b4dd7d88ee514298926d66ec4a

    • SSDEEP

      6144:01onzioSKdmypYj5KKwAI+6uRnb2HCG3AdUn4ih5sZ:0SzrSQK5/Iob2HpAdUn4ihiZ

    Score
    10/10
    trickbotbankerevasionexecutiontrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Stops running service(s)

      evasionexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks