General
-
Target
JaffaCakes118_ed17ab0a7cf96cee39bb6a1d89ff77da
-
Size
34KB
-
Sample
250110-yydjlsxqdq
-
MD5
ed17ab0a7cf96cee39bb6a1d89ff77da
-
SHA1
4687b6e477cfb9424afe49d6a40c68bd5f8c96c5
-
SHA256
87424284eb5ac8ba76507b31d8529b50b2ca308b555e5d711c3a55b423a5db5c
-
SHA512
ffdf8a7fd18b165927e1d250e0b46282cf6ebbee7d8552d2d19202d5adcc05919b7bf6ac1163fcf6b04d12008516065a5d63d03f4c955c91357608c99b32a81c
-
SSDEEP
768:hp22qWFcy5XQ7lO41uirwA98p3MpkNBxd0cJWV6dy/x9J2:hpYoX58z1uirL98xMWnT0OQ9J2
Malware Config
Targets
-
-
Target
JaffaCakes118_ed17ab0a7cf96cee39bb6a1d89ff77da
-
Size
34KB
-
MD5
ed17ab0a7cf96cee39bb6a1d89ff77da
-
SHA1
4687b6e477cfb9424afe49d6a40c68bd5f8c96c5
-
SHA256
87424284eb5ac8ba76507b31d8529b50b2ca308b555e5d711c3a55b423a5db5c
-
SHA512
ffdf8a7fd18b165927e1d250e0b46282cf6ebbee7d8552d2d19202d5adcc05919b7bf6ac1163fcf6b04d12008516065a5d63d03f4c955c91357608c99b32a81c
-
SSDEEP
768:hp22qWFcy5XQ7lO41uirwA98p3MpkNBxd0cJWV6dy/x9J2:hpYoX58z1uirL98xMWnT0OQ9J2
Score10/10-
Tinba / TinyBanker
Banking trojan which uses packet sniffing to steal data.
-
Tinba family
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-