danabot | e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4
Size

1.8MB
Sample

211229-zfk2eadgfq
MD5

d1aeee8a879d9abdae95db1a7026d98a
SHA1

243f9998f37f212d51ae2ccaf0926b1c155537ef
SHA256

e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4
SHA512

349fd49b93b84ed0a2c83c11ddb2dc6ba227706fa1b706fb5775507f39a975096c86a5b42586640aa8d240fbf09c00ab30738aa2476eda26d5fbc24c50d23fed

Score

10^/10

danabot 4 banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4.exe

Resource

win10-en-20211208

danabot 4 banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.244.223:443

192.236.194.72:443

Attributes

embedded_hash
0FA95F120D6EB149A5D48E36BC76879D
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4
- Size
  
  1.8MB
- MD5
  
  d1aeee8a879d9abdae95db1a7026d98a
- SHA1
  
  243f9998f37f212d51ae2ccaf0926b1c155537ef
- SHA256
  
  e4137d89ac91b90cfe803c7a6a21cf23653b72eff8a3b149ec5d420df95826d4
- SHA512
  
  349fd49b93b84ed0a2c83c11ddb2dc6ba227706fa1b706fb5775507f39a975096c86a5b42586640aa8d240fbf09c00ab30738aa2476eda26d5fbc24c50d23fed
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

© 2018-2024

Terms | Privacy