Overview

overview

10

Static

static

5

JaffaCakes...e8.exe

windows7-x64

10

JaffaCakes...e8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_705b65e185cd1fa3a3b5806697ca9ee8

  • Size

    89KB

  • Sample

    250107-v6s3gs1mcv

  • MD5

    705b65e185cd1fa3a3b5806697ca9ee8

  • SHA1

    c6fb9dee91bafef0ed016719a10553cdf660878d

  • SHA256

    bd2dcebe432ce003e54ad4a44986708259a14164d211b4e0f3c374a4fd7e4d77

  • SHA512

    546338f5c20b4e4ffd6e9b448eaf9a7ba982eab598414e7358322531a97516b8518c64174e6b792e7f59bf4c656d98fa2a87648a36f5c6948e24f54fda23d816

  • SSDEEP

    1536:Yr+mFM2HXKZgixhIksu+XM5/HtAQ9Jox7e:K+4MJIkLZJNAQ9Jo9e

Score
10/10
tinbabankerdiscoverypersistencetrojanupx

Malware Config

Targets

    • Target

      JaffaCakes118_705b65e185cd1fa3a3b5806697ca9ee8

    • Size

      89KB

    • MD5

      705b65e185cd1fa3a3b5806697ca9ee8

    • SHA1

      c6fb9dee91bafef0ed016719a10553cdf660878d

    • SHA256

      bd2dcebe432ce003e54ad4a44986708259a14164d211b4e0f3c374a4fd7e4d77

    • SHA512

      546338f5c20b4e4ffd6e9b448eaf9a7ba982eab598414e7358322531a97516b8518c64174e6b792e7f59bf4c656d98fa2a87648a36f5c6948e24f54fda23d816

    • SSDEEP

      1536:Yr+mFM2HXKZgixhIksu+XM5/HtAQ9Jox7e:K+4MJIkLZJNAQ9Jo9e

    Score
    10/10
    tinbabankerdiscoverypersistencetrojanupx

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks