Tinba v2

David Sancho Trend Micro
Peter Kruse CSIS

In September 2012, Trend Micro and CSIS Security Group jointly released a report covering a piece of research into the smallest banker ever observed. We dubbed the family 'Tinba'. The paper was called 'W32.Tinba (Tinybanker), The Turkish Incident'.

Since then, the group behind Tinba has changed strategy and expanded the code significantly. They have also expanded their list of targets, which is constantly growing using the ZeuS template.

This presentation includes analysis of new functions, C&C network and an apparent interesting move into the 'Crime as a Service' and commercialized crimekit business.

Tinba currently attacks several financial institutions across Europe and is still undergoing major development.

Researchers Robert McArdle and Peter Kruse will jointly present the latest strategies surrounding Tinba v2 and also plan to release a new technical whitepaper after the VB2013 conference.

VB2013 takes place 2-4 October 2013 in Berlin, Germany.

The full programme for VB2013, including abstracts for each paper, can be viewed here.

Click here for more details about the conference.


We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.