Overview

overview

10

Static

static

3

61b92eee51...fN.exe

windows7-x64

10

61b92eee51...fN.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61b92eee5107293b84a8ffb9aecf4df341aafc9e1b20d05aac9adaa0154bd4dfN.exe

  • Size

    89KB

  • Sample

    250208-kaqblsvkgw

  • MD5

    1d028bb4ade2e29c83e1365c3d9621a0

  • SHA1

    bcd021fe5f5406a2793b8544570c4bb7233782ec

  • SHA256

    61b92eee5107293b84a8ffb9aecf4df341aafc9e1b20d05aac9adaa0154bd4df

  • SHA512

    520ec6b015e05247a66a7671d5b41499eabd17ff21d500632250522c0faa7a3575008bde10d4e5d57fae6f48276efec2e995d3ceb0f6fb2663c4948fab2911e9

  • SSDEEP

    1536:S9o65gQK3Zm+Mt9RV5O8oQ9cXFunGm6ManhFLnBqHan6owwosTk8vxA:S9o6fK2XqXQwhnHlqQo8Lvy

Score
10/10
tinbabankerdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      61b92eee5107293b84a8ffb9aecf4df341aafc9e1b20d05aac9adaa0154bd4dfN.exe

    • Size

      89KB

    • MD5

      1d028bb4ade2e29c83e1365c3d9621a0

    • SHA1

      bcd021fe5f5406a2793b8544570c4bb7233782ec

    • SHA256

      61b92eee5107293b84a8ffb9aecf4df341aafc9e1b20d05aac9adaa0154bd4df

    • SHA512

      520ec6b015e05247a66a7671d5b41499eabd17ff21d500632250522c0faa7a3575008bde10d4e5d57fae6f48276efec2e995d3ceb0f6fb2663c4948fab2911e9

    • SSDEEP

      1536:S9o65gQK3Zm+Mt9RV5O8oQ9cXFunGm6ManhFLnBqHan6owwosTk8vxA:S9o6fK2XqXQwhnHlqQo8Lvy

    Score
    10/10
    tinbabankerdiscoverypersistencetrojan

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks