tinba | b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055 | Triage

Submit
Reports

Overview

overview

Static

static

5

b809980a4d...5N.exe

windows7-x64

b809980a4d...5N.exe

windows10-2004-x64

Sharing

General

Target

b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055N
Size

89KB
Sample

241108-zj1w2azape
MD5

c15e36b599f9ebc06fb6acbad75f9660
SHA1

eadbe3c2b58dfd39edc7764ceb18131210d97267
SHA256

b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055
SHA512

da64d4ea7370397ae53ef7aeeaa1976a7d2b3baae959fb51669bf54c208fd7fd2eec9290eea76f26ee592d328031b186c4f62c68ae6f35fe90645a25c6d4d062
SSDEEP

1536:11+mFM2HXKZgixhIksu+XM5/HtAQ9Jox7e:H+4MJIkLZJNAQ9Jo9e

Score

10^/10

tinba banker discovery persistence trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055N.exe

Resource

win7-20240903-en

tinba banker discovery persistence trojan upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055N.exe

Resource

win10v2004-20241007-en

tinba banker discovery persistence trojan upx

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Targets

- Target
  
  b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055N
- Size
  
  89KB
- MD5
  
  c15e36b599f9ebc06fb6acbad75f9660
- SHA1
  
  eadbe3c2b58dfd39edc7764ceb18131210d97267
- SHA256
  
  b809980a4d1c1332ebe42fde640b491ce28d3ca13e4d19322173849530cda055
- SHA512
  
  da64d4ea7370397ae53ef7aeeaa1976a7d2b3baae959fb51669bf54c208fd7fd2eec9290eea76f26ee592d328031b186c4f62c68ae6f35fe90645a25c6d4d062
- SSDEEP
  
  1536:11+mFM2HXKZgixhIksu+XM5/HtAQ9Jox7e:H+4MJIkLZJNAQ9Jo9e
Score

10^/10

tinba banker discovery persistence trojan upx
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Tinba family
  tinba
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

tinbabankerdiscoverypersistencetrojanupx

behavioral2

tinbabankerdiscoverypersistencetrojanupx

© 2018-2025

Terms | Privacy