Overview

overview

10

Static

static

3

de1aaf1f0e...ee.exe

windows7-x64

10

de1aaf1f0e...ee.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de1aaf1f0e9007de95f08d52e976731fd4d1109239f6e595f912799e4d2e40ee.exe

  • Size

    89KB

  • Sample

    250208-rcar9szpdr

  • MD5

    7b8c420095660de664880aa1882e62d4

  • SHA1

    3b1af97583fb9dce553f31a92292835a849b3882

  • SHA256

    de1aaf1f0e9007de95f08d52e976731fd4d1109239f6e595f912799e4d2e40ee

  • SHA512

    dedbe8e7efdeef3776f5f0a84bd98f573e4383a0975332fae60e1ebb590b077c254df781b0be659fa297415712461aaf1bba52270d681ef60bb9deec80e180e1

  • SSDEEP

    1536:S9o65gQK3Zm+Mt9RV5O8oQ9cXFunGm6ManhFLnBqHan6owwosTk8vxA0:S9o6fK2XqXQwhnHlqQo8Lvy0

Score
10/10
tinbabankerdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      de1aaf1f0e9007de95f08d52e976731fd4d1109239f6e595f912799e4d2e40ee.exe

    • Size

      89KB

    • MD5

      7b8c420095660de664880aa1882e62d4

    • SHA1

      3b1af97583fb9dce553f31a92292835a849b3882

    • SHA256

      de1aaf1f0e9007de95f08d52e976731fd4d1109239f6e595f912799e4d2e40ee

    • SHA512

      dedbe8e7efdeef3776f5f0a84bd98f573e4383a0975332fae60e1ebb590b077c254df781b0be659fa297415712461aaf1bba52270d681ef60bb9deec80e180e1

    • SSDEEP

      1536:S9o65gQK3Zm+Mt9RV5O8oQ9cXFunGm6ManhFLnBqHan6owwosTk8vxA0:S9o6fK2XqXQwhnHlqQo8Lvy0

    Score
    10/10
    tinbabankerdiscoverypersistencetrojan

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks