General
-
Target
dd7753ba59a9bde4944770bea45f7d4c91d01bcbee2905fac97f2d5832a57ae1.exe
-
Size
225KB
-
Sample
250216-xp8gyswle1
-
MD5
59f3eb059ff83422ec90208149a964b6
-
SHA1
485724f12562c211d43dd64b9ca403202a6cb5ce
-
SHA256
dd7753ba59a9bde4944770bea45f7d4c91d01bcbee2905fac97f2d5832a57ae1
-
SHA512
ae3cd320912dfd7d50d172e0b1fcb02d9ec184ee63b99213f9292213c2e86e15ffbd70d399b2e5238143599e5a7c811cc0a8a07669f1ee8ef0d21a2a237ead5a
-
SSDEEP
6144:WA2P27yTAnKGw0hjFhSR/W11yAJ9v0pMtRCpYM:WATuTAnKGwUAW3ycQqgX
Malware Config
Targets
-
-
Target
dd7753ba59a9bde4944770bea45f7d4c91d01bcbee2905fac97f2d5832a57ae1.exe
-
Size
225KB
-
MD5
59f3eb059ff83422ec90208149a964b6
-
SHA1
485724f12562c211d43dd64b9ca403202a6cb5ce
-
SHA256
dd7753ba59a9bde4944770bea45f7d4c91d01bcbee2905fac97f2d5832a57ae1
-
SHA512
ae3cd320912dfd7d50d172e0b1fcb02d9ec184ee63b99213f9292213c2e86e15ffbd70d399b2e5238143599e5a7c811cc0a8a07669f1ee8ef0d21a2a237ead5a
-
SSDEEP
6144:WA2P27yTAnKGw0hjFhSR/W11yAJ9v0pMtRCpYM:WATuTAnKGwUAW3ycQqgX
Score10/10-
Tinba / TinyBanker
Banking trojan which uses packet sniffing to steal data.
-
Tinba family
-
Downloads MZ/PE file
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1