Overview

overview

10

Static

static

5

adb3599368...18.exe

windows7-x64

10

adb3599368...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    adb3599368dc2e40fb16f012c3c84b29_JaffaCakes118

  • Size

    46KB

  • Sample

    241128-1rnr4sxpcn

  • MD5

    adb3599368dc2e40fb16f012c3c84b29

  • SHA1

    a2af647b01acd1fa6e58f984a1f512d96b6689a8

  • SHA256

    37ff62b9af34949712b54237143407fcec787df6bd5085549877334d6109ebdd

  • SHA512

    a19707029af4eb8158ef753044d55f3537fefd02f4c86a8796e0127b51fe9c28a8b9555a26df4cfeae5e5da7fef2ed3cf7f7163cdbb39ff2d430c31dd7cfdcc2

  • SSDEEP

    768:8twyMe0Jy8xwd117mrlI9m/xGuv4V7RMEnqt9jn2ACH3hLZ2HwCLlH:8twyedxwr1qUMv4VV6j2A83hVY

Score
10/10
tinbabankerdiscoverypersistencetrojanupx

Malware Config

Targets

    • Target

      adb3599368dc2e40fb16f012c3c84b29_JaffaCakes118

    • Size

      46KB

    • MD5

      adb3599368dc2e40fb16f012c3c84b29

    • SHA1

      a2af647b01acd1fa6e58f984a1f512d96b6689a8

    • SHA256

      37ff62b9af34949712b54237143407fcec787df6bd5085549877334d6109ebdd

    • SHA512

      a19707029af4eb8158ef753044d55f3537fefd02f4c86a8796e0127b51fe9c28a8b9555a26df4cfeae5e5da7fef2ed3cf7f7163cdbb39ff2d430c31dd7cfdcc2

    • SSDEEP

      768:8twyMe0Jy8xwd117mrlI9m/xGuv4V7RMEnqt9jn2ACH3hLZ2HwCLlH:8twyedxwr1qUMv4VV6j2A83hVY

    Score
    10/10
    tinbabankerdiscoverypersistencetrojanupx

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks