tinba | 37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e | Triage

Submit
Reports

Overview

overview

Static

static

3

37a5ef2f52...cs.exe

windows7-x64

37a5ef2f52...cs.exe

windows10-2004-x64

Sharing

General

Target

37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e_NeikiAnalytics.exe
Size

98KB
Sample

240701-fsw5naxbqe
MD5

ae8090e15aa8d3bc8c44ec453d74f610
SHA1

f49b32774057acc4ef4f69548a9c40f568831861
SHA256

37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e
SHA512

3ea3760d3d59356ffd404ccc592b009705ecf0092c7f31b23cdaa144aedf2cc2994eff8c150e91c3bfe2a545ba4f8139be6c1c289b034a4fc4a387b9a7284f8d
SSDEEP

768:L+6p+OMlgGMCWhfDzU7f7JDgi9I57+sByZ+XsfXpwtG9ipelU9JF:L+mFM2HXKZgi9Iksu+XM57ipeq9JF

Score

10^/10

tinba banker persistence trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e_NeikiAnalytics.exe

Resource

win7-20240508-en

tinba banker persistence trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

tinba banker persistence trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e_NeikiAnalytics.exe
- Size
  
  98KB
- MD5
  
  ae8090e15aa8d3bc8c44ec453d74f610
- SHA1
  
  f49b32774057acc4ef4f69548a9c40f568831861
- SHA256
  
  37a5ef2f525e7568dc26ad76063e4bb3acc9b80ef12150dc4c765e06c95cfb6e
- SHA512
  
  3ea3760d3d59356ffd404ccc592b009705ecf0092c7f31b23cdaa144aedf2cc2994eff8c150e91c3bfe2a545ba4f8139be6c1c289b034a4fc4a387b9a7284f8d
- SSDEEP
  
  768:L+6p+OMlgGMCWhfDzU7f7JDgi9I57+sByZ+XsfXpwtG9ipelU9JF:L+mFM2HXKZgi9Iksu+XM57ipeq9JF
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy