Overview

overview

10

Static

static

3

96473013b5...3d.exe

windows7-x64

10

96473013b5...3d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    96473013b50d731993172180f36755a794bcbf6e744ac28960a744ea3cfec83d

  • Size

    1.0MB

  • Sample

    240531-a5l8bsge7w

  • MD5

    48544712cf040eac4b968f6b25665096

  • SHA1

    c55f5bc4ad221088203a4e997e71a3d1febc44f4

  • SHA256

    96473013b50d731993172180f36755a794bcbf6e744ac28960a744ea3cfec83d

  • SHA512

    f2e53a9a22e972ad062bc957b63b6c0f057a7251e91afbbcf505693627e8e7dc6bd788c1bdfb50ff460cd09e2f414af96f41df116c8eac2b4efca8afcdd11179

  • SSDEEP

    24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNDmw8:E5aIwC+AUBsWsXH8

Score
10/10
trickbotbankerevasionexecutiontrojan

Malware Config

Targets

    • Target

      96473013b50d731993172180f36755a794bcbf6e744ac28960a744ea3cfec83d

    • Size

      1.0MB

    • MD5

      48544712cf040eac4b968f6b25665096

    • SHA1

      c55f5bc4ad221088203a4e997e71a3d1febc44f4

    • SHA256

      96473013b50d731993172180f36755a794bcbf6e744ac28960a744ea3cfec83d

    • SHA512

      f2e53a9a22e972ad062bc957b63b6c0f057a7251e91afbbcf505693627e8e7dc6bd788c1bdfb50ff460cd09e2f414af96f41df116c8eac2b4efca8afcdd11179

    • SSDEEP

      24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNDmw8:E5aIwC+AUBsWsXH8

    Score
    10/10
    trickbotbankerevasionexecutiontrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Stops running service(s)

      evasionexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks