trickbot | 46174990d09e1f00512fd78f27a0c0d856f9f01cc8a57bc1bd74f876a8fc4b0b | Triage

Submit
Reports

Overview

overview

Static

static

3

a81f8bdf1a...18.exe

windows7-x64

a81f8bdf1a...18.exe

windows10-2004-x64

Sharing

General

Target

a81f8bdf1ab6a5f055ba27317d0fe8e2_JaffaCakes118
Size

448KB
Sample

240614-fxkx7awena
MD5

a81f8bdf1ab6a5f055ba27317d0fe8e2
SHA1

8aa7ec9a093e3efdffbb427b518abccda217d42f
SHA256

46174990d09e1f00512fd78f27a0c0d856f9f01cc8a57bc1bd74f876a8fc4b0b
SHA512

4d7e754d0a96a429c1cf43d8fe8d66fdc0dc9bf53301d4567de559644621e1567b15445c733ae45df262795c18fadcd167b94f7f7582781897fc30426520b004
SSDEEP

12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCx:4xBAiAHwfz

Score

10^/10

trickbot banker dave trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a81f8bdf1ab6a5f055ba27317d0fe8e2_JaffaCakes118.exe

Resource

win7-20240508-en

trickbot banker dave trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a81f8bdf1ab6a5f055ba27317d0fe8e2_JaffaCakes118.exe

Resource

win10v2004-20240226-en

trickbot banker dave trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  a81f8bdf1ab6a5f055ba27317d0fe8e2_JaffaCakes118
- Size
  
  448KB
- MD5
  
  a81f8bdf1ab6a5f055ba27317d0fe8e2
- SHA1
  
  8aa7ec9a093e3efdffbb427b518abccda217d42f
- SHA256
  
  46174990d09e1f00512fd78f27a0c0d856f9f01cc8a57bc1bd74f876a8fc4b0b
- SHA512
  
  4d7e754d0a96a429c1cf43d8fe8d66fdc0dc9bf53301d4567de559644621e1567b15445c733ae45df262795c18fadcd167b94f7f7582781897fc30426520b004
- SSDEEP
  
  12288:QboBb/W9ANGBAFb5i0P6HfewKQLYg0yCx:4xBAiAHwfz
Score

10^/10

trickbot banker dave trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
- Dave packer
  Detects executable using a packer named 'Dave' by the community, based on a string at the end.
  dave
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankerdavetrojan

behavioral2

trickbotbankerdavetrojan

© 2018-2024

Terms | Privacy