Overview

overview

10

Static

static

3

2785cbfa62...3N.exe

windows7-x64

10

2785cbfa62...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2785cbfa62d74aa9f5dc09fc82eb04e117015705df91432a0bd22e433b20ee13N.exe

  • Size

    69KB

  • Sample

    250208-awm39swrhq

  • MD5

    ed29dddb45943dba0a11368b2031d9b0

  • SHA1

    642037477e5b8f6f6b0285326b9fa94578d868b8

  • SHA256

    2785cbfa62d74aa9f5dc09fc82eb04e117015705df91432a0bd22e433b20ee13

  • SHA512

    77ed84572a5c0dbeb58686e6a313e430bbae4a0b4bcce02a175ff6ed9c03d59a2b6c573cd4a3797302732160743de9693d5947992bd80c5c0a585700477de519

  • SSDEEP

    1536:/scjyeFQGssuwDwIAqhc/MIDM7ag9JDtR:/scOeF0fwcIfyMyg9J3

Score
10/10
tinbabankerdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      2785cbfa62d74aa9f5dc09fc82eb04e117015705df91432a0bd22e433b20ee13N.exe

    • Size

      69KB

    • MD5

      ed29dddb45943dba0a11368b2031d9b0

    • SHA1

      642037477e5b8f6f6b0285326b9fa94578d868b8

    • SHA256

      2785cbfa62d74aa9f5dc09fc82eb04e117015705df91432a0bd22e433b20ee13

    • SHA512

      77ed84572a5c0dbeb58686e6a313e430bbae4a0b4bcce02a175ff6ed9c03d59a2b6c573cd4a3797302732160743de9693d5947992bd80c5c0a585700477de519

    • SSDEEP

      1536:/scjyeFQGssuwDwIAqhc/MIDM7ag9JDtR:/scOeF0fwcIfyMyg9J3

    Score
    10/10
    tinbabankerdiscoverypersistencetrojan

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks