trickbot | aa816907cbe55fb2e170741297322bdfecc1e68b7f0420fc0459f4d57a395a86 | Triage

Sharing

General

Target

e16667f2181a0503314127cf299d2919_JaffaCakes118
Size

312KB
Sample

240915-bgxjtsxejl
MD5

e16667f2181a0503314127cf299d2919
SHA1

87bf8c671ee052f4d09a10caca2bdb8277d3e19a
SHA256

aa816907cbe55fb2e170741297322bdfecc1e68b7f0420fc0459f4d57a395a86
SHA512

e24e7845528b167c83c80c9da6215950c8a4a32da6c2c19bec1c4f55c68adb90495d75f4cd85b69db9edc7bf4220dff0f8faf37cba6699371827dadf64daa2e6
SSDEEP

6144:W5uBbbdoxf1IWuzyCBaBGAFmn6Gx9WEQDB4JsE5f:UObB+f1IWmyRsn6GxA3DeJsE

Score

10^/10

trickbot banker discovery trojan

Malware Config

Targets

- Target
  
  e16667f2181a0503314127cf299d2919_JaffaCakes118
- Size
  
  312KB
- MD5
  
  e16667f2181a0503314127cf299d2919
- SHA1
  
  87bf8c671ee052f4d09a10caca2bdb8277d3e19a
- SHA256
  
  aa816907cbe55fb2e170741297322bdfecc1e68b7f0420fc0459f4d57a395a86
- SHA512
  
  e24e7845528b167c83c80c9da6215950c8a4a32da6c2c19bec1c4f55c68adb90495d75f4cd85b69db9edc7bf4220dff0f8faf37cba6699371827dadf64daa2e6
- SSDEEP
  
  6144:W5uBbbdoxf1IWuzyCBaBGAFmn6Gx9WEQDB4JsE5f:UObB+f1IWmyRsn6GxA3DeJsE
Score

10^/10

trickbot banker discovery trojan
- Trickbot
  Developed in 2016, TrickBot is one of the more recent banking Trojans.
  trojan banker trickbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trickbotbankerdiscoverytrojan

behavioral2

trickbotbankerdiscoverytrojan