Overview

overview

10

Static

static

5

1351d4cbb2...dN.exe

windows7-x64

10

1351d4cbb2...dN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1351d4cbb25b9e256a8314b60e18bf500de910b9d2fd4f427ad485e0e0ceaf7dN.exe

  • Size

    45KB

  • Sample

    250104-h5cyna1kfp

  • MD5

    e145656aa3ecca88cea70510c7f06c60

  • SHA1

    5b162444c1a093ab896759ef4192615a700fabe5

  • SHA256

    1351d4cbb25b9e256a8314b60e18bf500de910b9d2fd4f427ad485e0e0ceaf7d

  • SHA512

    1e0978ea182855d3bc757acbb632e5ccaede5dbe8858b33e4d5f31b361882f91d13f85c27ad9f15988152b7d36359a22cf638fa356175ea429817edc50319a44

  • SSDEEP

    768:lhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2P:3sWE9N5dFu53dsniQaB/xZ14n7zIF+q7

Score
10/10
tinbabankerdiscoverypersistencetrojanupx

Malware Config

Targets

    • Target

      1351d4cbb25b9e256a8314b60e18bf500de910b9d2fd4f427ad485e0e0ceaf7dN.exe

    • Size

      45KB

    • MD5

      e145656aa3ecca88cea70510c7f06c60

    • SHA1

      5b162444c1a093ab896759ef4192615a700fabe5

    • SHA256

      1351d4cbb25b9e256a8314b60e18bf500de910b9d2fd4f427ad485e0e0ceaf7d

    • SHA512

      1e0978ea182855d3bc757acbb632e5ccaede5dbe8858b33e4d5f31b361882f91d13f85c27ad9f15988152b7d36359a22cf638fa356175ea429817edc50319a44

    • SSDEEP

      768:lhP0kDE9N5dCA8J7VHXdrIniQaBTT+QQ+r1n4K8+C9TtIuCjaqUODvJVQ2P:3sWE9N5dFu53dsniQaB/xZ14n7zIF+q7

    Score
    10/10
    tinbabankerdiscoverypersistencetrojanupx

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks