tinba | ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c | Triage

Submit
Reports

Overview

overview

Static

static

3

ac69a8bb28...cs.exe

windows7-x64

ac69a8bb28...cs.exe

windows10-2004-x64

Sharing

General

Target

ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c_NeikiAnalytics.exe
Size

32KB
Sample

240629-p7nw9s1cjn
MD5

2023fe259b9c60921db67b6d0c5091b0
SHA1

6ca83e3342bf2706816db3454f7bf1c2017b133d
SHA256

ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c
SHA512

7d2c3e872cb574cd2e7f9cb46f22d96e6739b3c7668b054ab0044b45163e96eb359c03585bd4dff9f45ead288be1128656e8ddeeb6fbe1bdf0b7e994b013c92e
SSDEEP

768:ktkSEpBYWOqpRz+Oza7hYUtXz8z7nIV9dr2V9r7Dk9J:ckBpvTz+B7xYY/KV9Q9J

Score

10^/10

tinba banker persistence trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c_NeikiAnalytics.exe

Resource

win7-20240508-en

tinba banker persistence trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

tinba banker persistence trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c_NeikiAnalytics.exe
- Size
  
  32KB
- MD5
  
  2023fe259b9c60921db67b6d0c5091b0
- SHA1
  
  6ca83e3342bf2706816db3454f7bf1c2017b133d
- SHA256
  
  ac69a8bb28aabbfce04f19ac1b8262f7570d6a703bc9f9a70f2a84e27e15fa7c
- SHA512
  
  7d2c3e872cb574cd2e7f9cb46f22d96e6739b3c7668b054ab0044b45163e96eb359c03585bd4dff9f45ead288be1128656e8ddeeb6fbe1bdf0b7e994b013c92e
- SSDEEP
  
  768:ktkSEpBYWOqpRz+Oza7hYUtXz8z7nIV9dr2V9r7Dk9J:ckBpvTz+B7xYY/KV9Q9J
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy