Overview

overview

10

Static

static

5

d93324dd03...3N.exe

windows7-x64

10

d93324dd03...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d93324dd032efa2df66954dd57fdc46e5d94be8fa51188fd80e07a4fa090c833N.exe

  • Size

    45KB

  • Sample

    250102-dr114sspeq

  • MD5

    f9c7a24855171a916c6c183d6f738fb0

  • SHA1

    cdb3f173e08f7c327a03444d1638d704e548ce42

  • SHA256

    d93324dd032efa2df66954dd57fdc46e5d94be8fa51188fd80e07a4fa090c833

  • SHA512

    fc1184747a11d3dca3aca31cfd33b9f225aac55836df753dade9c87ebab40da503ffed8e95850a2aef817bf635937f70d8280ce59960efe7392f4fb4862f0b45

  • SSDEEP

    768:HhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:BsWE9N5dFu53dsniQaB/xZ14n7zIF+qr

Score
10/10
tinbabankerdiscoverypersistencetrojanupx

Malware Config

Targets

    • Target

      d93324dd032efa2df66954dd57fdc46e5d94be8fa51188fd80e07a4fa090c833N.exe

    • Size

      45KB

    • MD5

      f9c7a24855171a916c6c183d6f738fb0

    • SHA1

      cdb3f173e08f7c327a03444d1638d704e548ce42

    • SHA256

      d93324dd032efa2df66954dd57fdc46e5d94be8fa51188fd80e07a4fa090c833

    • SHA512

      fc1184747a11d3dca3aca31cfd33b9f225aac55836df753dade9c87ebab40da503ffed8e95850a2aef817bf635937f70d8280ce59960efe7392f4fb4862f0b45

    • SSDEEP

      768:HhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2f:BsWE9N5dFu53dsniQaB/xZ14n7zIF+qr

    Score
    10/10
    tinbabankerdiscoverypersistencetrojanupx

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks