danabot | 1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a
Size

1.1MB
Sample

220108-vwglpsdfaj
MD5

0347b84f4e3d0aa6a1009f509539e2b1
SHA1

48186b9449ca1bbce11c8cc03d5b2c790fb8db40
SHA256

1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a
SHA512

a9a070821792f07feacdfe3a1d43bd7d2ecd1416a068ad10a3990f78cc9b2c57f58e5db9fb7be483d9cd9f23fd815a9162adbdaa0635264525c5aa55cf4ede55

Score

10^/10

danabot 4 banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a.exe

Resource

win10-en-20211208

danabot 4 banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

192.119.110.4:443

192.236.194.72:443

Attributes

embedded_hash
422236FD601D11EE82825A484D26DD6F
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a
- Size
  
  1.1MB
- MD5
  
  0347b84f4e3d0aa6a1009f509539e2b1
- SHA1
  
  48186b9449ca1bbce11c8cc03d5b2c790fb8db40
- SHA256
  
  1027b3f9e451a16896a4b06e851002ab01ca153421b17cbad6b0e73fac85ed4a
- SHA512
  
  a9a070821792f07feacdfe3a1d43bd7d2ecd1416a068ad10a3990f78cc9b2c57f58e5db9fb7be483d9cd9f23fd815a9162adbdaa0635264525c5aa55cf4ede55
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

© 2018-2024

Terms | Privacy