Overview

overview

10

Static

static

3

7986036ce1...f9.exe

windows7-x64

10

7986036ce1...f9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7986036ce1ded039a5639f0a88e41aa558a83a9570c108c2151dff6d3b08adf9.exe

  • Size

    88KB

  • Sample

    250208-amt58awnek

  • MD5

    77b3f2d5736221b564fdceeebe185598

  • SHA1

    84d448fdb5853c26ee1ad36614e1e6871810e379

  • SHA256

    7986036ce1ded039a5639f0a88e41aa558a83a9570c108c2151dff6d3b08adf9

  • SHA512

    993411585c69f4b29f616750b5cab4ad8462552567457e2ddc19025d66206138d3c671aab1a783a885d4207e5f9d01cc9e91a7473a1b717b3d19a7127d8a0168

  • SSDEEP

    1536:tPx+riFFG1g3K6KUm3wEeQqjh+rmKVsNN:TYdsFE2jwqWsNN

Score
10/10
tinbabankerdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      7986036ce1ded039a5639f0a88e41aa558a83a9570c108c2151dff6d3b08adf9.exe

    • Size

      88KB

    • MD5

      77b3f2d5736221b564fdceeebe185598

    • SHA1

      84d448fdb5853c26ee1ad36614e1e6871810e379

    • SHA256

      7986036ce1ded039a5639f0a88e41aa558a83a9570c108c2151dff6d3b08adf9

    • SHA512

      993411585c69f4b29f616750b5cab4ad8462552567457e2ddc19025d66206138d3c671aab1a783a885d4207e5f9d01cc9e91a7473a1b717b3d19a7127d8a0168

    • SSDEEP

      1536:tPx+riFFG1g3K6KUm3wEeQqjh+rmKVsNN:TYdsFE2jwqWsNN

    Score
    10/10
    tinbabankerdiscoverypersistencetrojan

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks