tinba | b17d531900420bf97fac3d5fb5405aeb85942d842dbb36312e7252692f3ec27c | Triage

Submit
Reports

Overview

overview

Static

static

5

8514731ad3...18.exe

windows7-x64

8514731ad3...18.exe

windows10-2004-x64

Sharing

General

Target

8514731ad390d58d3fddebb224a51e56_JaffaCakes118
Size

44KB
Sample

241102-mxgdbs1qbx
MD5

8514731ad390d58d3fddebb224a51e56
SHA1

3c7e9d9cc1ccd79f651ce3c3e744e2ceb31e50e2
SHA256

b17d531900420bf97fac3d5fb5405aeb85942d842dbb36312e7252692f3ec27c
SHA512

57aac21221efc337673f4d192a34705b57959566485f6a5b9e05960540353bdcd0b593ae1e31c0f3d81337124129c6e1de616a8023e7017dfacc21a1c0e4c46f
SSDEEP

768:ja+vOyMD5oQ/cXK+dbFg1TGAN2RUqZxbhxEll7j0MLlH:ja+vM4ld+TR26qZxbhO3IM

Score

10^/10

tinba banker discovery persistence trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8514731ad390d58d3fddebb224a51e56_JaffaCakes118.exe

Resource

win7-20240903-en

tinba banker discovery persistence trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8514731ad390d58d3fddebb224a51e56_JaffaCakes118.exe

Resource

win10v2004-20241007-en

tinba banker discovery persistence trojan upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  8514731ad390d58d3fddebb224a51e56_JaffaCakes118
- Size
  
  44KB
- MD5
  
  8514731ad390d58d3fddebb224a51e56
- SHA1
  
  3c7e9d9cc1ccd79f651ce3c3e744e2ceb31e50e2
- SHA256
  
  b17d531900420bf97fac3d5fb5405aeb85942d842dbb36312e7252692f3ec27c
- SHA512
  
  57aac21221efc337673f4d192a34705b57959566485f6a5b9e05960540353bdcd0b593ae1e31c0f3d81337124129c6e1de616a8023e7017dfacc21a1c0e4c46f
- SSDEEP
  
  768:ja+vOyMD5oQ/cXK+dbFg1TGAN2RUqZxbhxEll7j0MLlH:ja+vM4ld+TR26qZxbhO3IM
Score

10^/10

tinba banker discovery persistence trojan upx
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Tinba family
  tinba
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

tinbabankerdiscoverypersistencetrojanupx

behavioral2

tinbabankerdiscoverypersistencetrojanupx

© 2018-2025

Terms | Privacy