By ESGI Advisor in Malware

Threat Scorecard

Ranking: 17,849
Threat Level: 90 % (High)
Infected Computers: 1,537
First Seen: June 4, 2012
Last Seen: October 5, 2022
OS(es) Affected: Windows

Tinba is a banking malware infection that steals confidential information from victims. Tinba is a combination of the words 'tiny' and 'banker'; it is also called Tinybanker and Zusy. Tinba propagates via the Blackhole exploit kit. The main goal of Tinba is to target Turkish computer users. Tinba uses web injects for stealing the login information from websites, namely those placed in Turkey. Some targets incorporating Facebook, Microsoft, GMX, and Google and are hardcoded into the code of Tinba itself and are universally corrupted by Tinba. Other institutions are compromised depending on downloaded configuration files; frequent targets incorporate key government portals and Turkish banks/financial institutions. Tinba is also associated with other activities that include pornographic websites, shady Web hosting, money mules, and other malware threats that steal information.

SpyHunter Detects & Remove Tinba

File System Details

Tinba creates the following file(s):
# File Name MD5 Detections
1. chk.exe 34c809f63528376356a5d85795f5ae22 224
2. chk.exe 42e844df5f940c6e1975ff7ebf4ba26a 171
3. chk.exe 15159e7dce479b2d5e378f16af68af2e 132
4. chk.exe 4a98ff2dc2428e00cc9d62d174d449b6 132
5. chk.exe da6115918cdcf1bf94701330655f059a 123
6. chk.exe 043eeec8f688100ac142f6b344c19ef8 96
7. chk.exe e16f974e3def7d9c16aa61f60a26abd7 74
8. chk.exe a18096552f1f7faedde02d4236c7a095 71
9. chk.exe 5e00fd790838796332d2c754ef7b8dd0 59
10. chk.exe 3ab9d894bfb21c2143c6b4b29e7a435c 50
11. chk.exe 70e91a8ef84783adc3c550bf3d5969f3 47
12. chk.exe d9f235cdf96453e74d184b7f5d1048a6 41
13. chk.exe 08ab359905a8316f9d86f0fd67b732a1 35
14. chk.exe b03787ba7021fb1394f6579a8f511ab3 32
15. bin.exe f6c5c74dd6805accbf57529b5214b3e0 4
16. WINLOGON.EXE 1e100c5435a8025e5bf471b09ec1a151 3
17. file.exe 08ab7f68c6b3a4a2a745cc244d41d213 1

Registry Details

Tinba creates the following registry entry or registry entries:
Regexp file mask

Related Posts


Most Viewed