Cinobi Banking Trojan Targets Customers of Cryptocurrency Exchanges with New Malvertising Marketing campaign

By
admin
-
0
112

[ad_1]


SHA256

File title

Observe

Evaluation

124FE26D53E2702B42AE07F8AEC5EE4E79E7424BCE6ECDA608536BBF0A7A2377

oneroom_setup.zip

Malicious sport archive

Trojan.Win32.SHELLOAD.AZ

E667F9C109E20900CC8BADD09EDE6CDCE0BDC77164CFD035ACE95498E90D45E7

oneroom_game.zip

Malicious sport archive

Trojan.Win32.SHELLOAD.AZ

93FFE7CF56FEB3FB541AEF91D3FC04A5CF22DF428DC0B7E5FEB8EDDDC2C72699

Magicalgirl.zip

Malicious sport archive

Trojan.Win32.SHELLOAD.AZ

AD13BB18465D259ACC6E4CEBA24BEFF42D50843C8FD92633C569E493A075FDDC

kiplayer.zip

Malicious streaming archive

 Trojan.Win32.SHELLOAD.BA

A9EF18B012BD20945BB3533DEEC69D82437BF0117F83B2E9F9E7FACC5AA81255

oneroom_game_v7.zip

Malicious sport archive

Trojan.Win32.SHELLOAD.AZ 

6C1F4FFA63EE7094573B0F6D1BD51255F603BC8958757405C8C998416537D587

Xjs.dll

First shellcode loader

Trojan.Win32.SHELLOAD.AZ

1366E2AC6365E4B76595A19760438D876E01DB40C60EC3F42849F0218B724F1B

Xjs.dll

First shellcode loader

Trojan.Win32.SHELLOAD.AZ

0B3E5E2406490DF17A198A8340B103BB331A5277461234F3F90ED257E418C1F8

Xjs.dll

First shellcode loader

Trojan.Win32.SHELLOAD.AZ

3E0FAEE93F6EF572537735C7F2D82D151C5A21EB30EACC576B3B66320C74FD34

format.cfg

Encrypted shellcode

Trojan.Win32.SHELLOAD.AZ.enc

DB6CBE4EE82F87008B34D1D4E9AA6EE3C9CCD21CB7A0B60925D5DA8D1295A269

format.cfg

Encrypted shellcode

Trojan.Win32.SHELLOAD.AZ.enc 

3B7FB5EC8180AD74871EB9F5B59E6E98A188CE84BA3BD6ADD9B4BCFCCB80C137

format.cfg

Encrypted shellcode

Trojan.Win32.SHELLOAD.AZ.enc

52E2B9CBA4E1BEE1EB3ED9D03BC33EADB6C8D6AAC8598679AA95690E587BE7C4

config.dll

Cinobi 1st stage loader; 32bit

Trojan.Win32.CINOBI.A

F5AD9E32A84DF617ABA3786F19BA7DAB4B4BD8A27627232D3AACE760511AEDF7

config.dll

Cinobi 1st stage loader; 32bit

Trojan.Win32.CINOBI.A

45C7C36E7E8B832815D8B03651EDC14F864B52E1C599E5336A1AAA0BD47FF3E3

cfg.config

Encrypted 1st stage of Cinobi; 32bit

 Trojan.Win32.CINOBI.AC

522C59BACE844A3D76B674842373DDBF959FC5B352317B024DBF225F536A641E

cfg.config

Encrypted 1st stage of Cinobi; 32bit

Trojan.Win32.CINOBI.AC  

16AB933AD01D73120EE5B764C12057FF7F6DC3063BBC377CDB87419A30532323

N/A

2nd and third stage loader; 32bit

Trojan.Win32.CINOBI.AC  

9D10AC2A2C7C58F1E1D4B745746AA5F0CE699C0DB87CCCA43418435FAA03AD1B

N/A

2nd stage encrypted; 32bit

Trojan.Win32.CINOBI.AC.enc  

C4039CD7DB24158BE51DA9010E6A367F5253F40F007B656407FB69D279732784

N/A

3nd stage encrypted; 32bit

Trojan.Win32.CINOBI.AC.enc

2A6FE431326ACCAF31EA7CA7CD1214AD5EFCA891619859BCF60671A62C8D81F4

N/A

Cinobi 4th stage (final); 32bit

TrojanSpy.Win32.CINOBI.C 

258EDBBAC7E78B4F51433807B237FC0ED7F76031795EA48A4FEFB38949F9B3B6

N/A

2nd and third stage loader; 64bit

Trojan.Win64.CINOBI.AA

A3010F206656752FAD70EF7637947933152E7ADC883B43D0832B2234C8E6F968

N/A

2nd stage encrypted; 64bit

Trojan.Win64.CINOBI.AA.enc

E037839A3DACC3153754A156136E9EAD2F4C52939FE869B3981C4BB5114202C8

N/A

third stage encrypted; 64bit

Trojan.Win64.CINOBI.AA.enc

F8B80978D4548139E824863DD661E40AF4C2523C3E93547E4F167A749E108280

N/A

Cinobi 4th stage (final); 64bit

TrojanSpy.Win64.CINOBI.AA 

B157BEAC5516D05A014527B3F0FE4B01683CAAC9FFF6608B67A8BA62DF5EF838

N/A

2nd and third stage loader; 32bit

 Trojan.Win32.CINOBI.A

2384FDA35A293B5F5B32B09E8DC455E7CE40A92D25CD9BACEEAB494785426B46

N/A

2nd stage encrypted; 32bit

 Trojan.Win32.CINOBI.A.enc

9FF65052FE93A884D7BCE36E87F4DE104839F72F26AF66785B2D98EAB706C816

N/A

3nd stage encrypted; 32bit

Trojan.Win32.CINOBI.AC.enc  

31C936D08E9BA8FDA86844F67363223BDB6A917F530571ABCB3F584874909FEA

N/A

Cinobi 4th stage (final); 32bit

 TrojanSpy.Win32.CINOBI.C  

00F24AC0AD19DC3EE05A112F7650AABA16041020263EA851C90F3C0A61C7EC57

N/A

2nd and third stage loader; 64bit

Trojan.Win64.CINOBI.AB   

B0E5BB79CDFAD284D88BC26DB4289A51F114CC71C928E8A9951DC8C498A243B9

N/A

2nd stage encrypted; 64bit

Trojan.Win64.CINOBI.AB.enc   

095E85EBE2155798FB3A5FBD57196CF377B56FB2176CFF3A776302DCB806237D

N/A

third stage encrypted; 64bit

Trojan.Win64.CINOBI.AB.enc   

B36BFF265EE47D31E4C70EE78BADCFCC0DE89643DA61C1BF16BA2D6F36A62936

N/A

Cinobi 4th stage (final); 64bit

TrojanSpy.Win64.CINOBI.AB   

E41AB2DE9CCFFE3AADDB32C224114D88D2E61C02D52F89829B544F49B672D74D

N/A

2nd stage loader; 32bit

Trojan.Win32.CINOBI.AA 

59DF3B32A0D3FEFB15C6AAB7D9254E597484A486156CBC1F403A376A8A0C25FB

N/A

2nd stage encrypted; 32bit

Trojan.Win32.CINOBI.AA.enc 

043720F493CA7A2B2E18CCD7AEC8CB8D577F544AAE02975BFE313046E839F107

N/A

2nd stage loader; 64bit

Trojan.Win64.CINOBI.AA 

83F7D60D172628E421EF038566F449E8708573201C8F23398F0F06B5F33123DA

N/A

2nd stage encrypted; 64bit

 Trojan.Win64.CINOBI.AA.enc

58C60164AAA23777E5A8DBBA25C4466A5B1ECA54EF8CF02BA2CD1AB7084753BE

N/A

Cinobi third stage (final); 32bit

 TrojanSpy.Win32.CINOBI.B

F3DA0C082EB271A2F0DD54F2A3260BFC02BDF311EBCB1C619D479FCBB1E9F6F5

N/A

Cinobi third stage (final); 64bit

TrojanSpy.Win64.CINOBI.AA 

[ad_2]