Overview

overview

10

Static

static

3

45f05f43b8...0N.exe

windows7-x64

10

45f05f43b8...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45f05f43b8f22bd84491034b378f8d60N

  • Size

    539KB

  • Sample

    240908-q1fgzsyglp

  • MD5

    45f05f43b8f22bd84491034b378f8d60

  • SHA1

    797af8521da5ac17f379d56814380ffe700655ec

  • SHA256

    d214ce381a1fd4c3aed996741b6d04468d4afd0c55c900c2cdb673a474acfa7e

  • SHA512

    bc7944b6f722c96e4fb43735bc4f88f142db4866d45144718df254a357c9224033e5a8d4e01d40ece41bf300e0fceed86df72b6c951838eca7eb3387872b2fe9

  • SSDEEP

    12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttYx/Iw/KiT1O11:ZXQUIsQpMsequrmGx/IwPTW1

Score
10/10
trickbotbankerdiscoverytrojan

Malware Config

Targets

    • Target

      45f05f43b8f22bd84491034b378f8d60N

    • Size

      539KB

    • MD5

      45f05f43b8f22bd84491034b378f8d60

    • SHA1

      797af8521da5ac17f379d56814380ffe700655ec

    • SHA256

      d214ce381a1fd4c3aed996741b6d04468d4afd0c55c900c2cdb673a474acfa7e

    • SHA512

      bc7944b6f722c96e4fb43735bc4f88f142db4866d45144718df254a357c9224033e5a8d4e01d40ece41bf300e0fceed86df72b6c951838eca7eb3387872b2fe9

    • SSDEEP

      12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttYx/Iw/KiT1O11:ZXQUIsQpMsequrmGx/IwPTW1

    Score
    10/10
    trickbotbankerdiscoverytrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks