Overview

overview

10

Static

static

3

9a97aa8e09...51.exe

windows7-x64

10

9a97aa8e09...51.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a97aa8e0989658584e7231444875cd9620bd54a15431d1b7db79899a13dde51.exe

  • Size

    225KB

  • Sample

    250217-erskeazlgk

  • MD5

    7fbfc6a5adfa0a7a5bed45cf14632947

  • SHA1

    92d07692502f7f69e91ab96f608bbafd91d43305

  • SHA256

    9a97aa8e0989658584e7231444875cd9620bd54a15431d1b7db79899a13dde51

  • SHA512

    91d217823663b9a01e73f9397909b35e39077e281e36bcde8923845c67bfc5f036a758bc1c345cb76e2b806f43d22f6bec44e5c9b0c9d014884f21c3d532baf9

  • SSDEEP

    6144:JA2P27yTAnKGw0hjFhSR/W11yAJ9v0pMtRCpY0:JATuTAnKGwUAW3ycQqgF

Score
10/10
tinbabankerdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      9a97aa8e0989658584e7231444875cd9620bd54a15431d1b7db79899a13dde51.exe

    • Size

      225KB

    • MD5

      7fbfc6a5adfa0a7a5bed45cf14632947

    • SHA1

      92d07692502f7f69e91ab96f608bbafd91d43305

    • SHA256

      9a97aa8e0989658584e7231444875cd9620bd54a15431d1b7db79899a13dde51

    • SHA512

      91d217823663b9a01e73f9397909b35e39077e281e36bcde8923845c67bfc5f036a758bc1c345cb76e2b806f43d22f6bec44e5c9b0c9d014884f21c3d532baf9

    • SSDEEP

      6144:JA2P27yTAnKGw0hjFhSR/W11yAJ9v0pMtRCpY0:JATuTAnKGwUAW3ycQqgF

    Score
    10/10
    tinbabankerdiscoverypersistencetrojan

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

      trojanbankertinba

    • Tinba family

      tinba

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks