tinba | d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5 | Triage

Submit
Reports

Overview

overview

Static

static

3

d203b81427...f5.exe

windows7-x64

d203b81427...f5.exe

windows10-2004-x64

Sharing

General

Target

d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5
Size

98KB
Sample

240705-dqwp1a1fmj
MD5

6a8dc200981c6381f9d52ce4a325ce19
SHA1

464c06425b96b082198e51b0bcc063a0d385a3f9
SHA256

d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5
SHA512

80bcf5bec54840cdf334d885f10c71f67fc264ce4d9793c4d383a6804a4e1cb9ca66d9525f8db229155555de9afa2a0e3a5591bb394b523e39a54e840b770bc4
SSDEEP

768:I+6p+OMlgGMCWhfDzU7f7JDgi9I57+sByZ+XsfXpwtG9ipelU9JF:I+mFM2HXKZgi9Iksu+XM57ipeq9JF

Score

10^/10

tinba banker persistence trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5.exe

Resource

win7-20240419-en

tinba banker persistence trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5.exe

Resource

win10v2004-20240704-en

tinba banker persistence trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5
- Size
  
  98KB
- MD5
  
  6a8dc200981c6381f9d52ce4a325ce19
- SHA1
  
  464c06425b96b082198e51b0bcc063a0d385a3f9
- SHA256
  
  d203b81427d1209b41674f0ec62508fa72bae4ddbea362cebf8da1fd3c5e92f5
- SHA512
  
  80bcf5bec54840cdf334d885f10c71f67fc264ce4d9793c4d383a6804a4e1cb9ca66d9525f8db229155555de9afa2a0e3a5591bb394b523e39a54e840b770bc4
- SSDEEP
  
  768:I+6p+OMlgGMCWhfDzU7f7JDgi9I57+sByZ+XsfXpwtG9ipelU9JF:I+mFM2HXKZgi9Iksu+XM57ipeq9JF
Score

10^/10

tinba banker persistence trojan
- Tinba / TinyBanker
  Banking trojan which uses packet sniffing to steal data.
  trojan banker tinba
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

tinbabankerpersistencetrojan

behavioral2

tinbabankerpersistencetrojan

© 2018-2024

Terms | Privacy