danabot | c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72
Size

1.1MB
Sample

220109-dbl71sdcf8
MD5

7f8d63b515602c453d4b82c506f2c9d6
SHA1

8c7d9cfae4b5d5283d85d339c417e4a9a9911a73
SHA256

c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72
SHA512

3bd87d5803ba8180216d522aeec6aa67b7d1df62c6e96d0d2800192f89b2ae577d6d95c6a0b6a96ccf2788de4d33acd642b461b60bfa11cbeb9c96e56a493bf8

Score

10^/10

danabot 4 banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72.exe

Resource

win10-en-20211208

danabot 4 banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

192.119.110.4:443

103.175.16.113:443

Attributes

embedded_hash
422236FD601D11EE82825A484D26DD6F
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72
- Size
  
  1.1MB
- MD5
  
  7f8d63b515602c453d4b82c506f2c9d6
- SHA1
  
  8c7d9cfae4b5d5283d85d339c417e4a9a9911a73
- SHA256
  
  c032032a6008322f58be7e4d80ff83e42b5b1dc66c5249bcf24cbc58e6264d72
- SHA512
  
  3bd87d5803ba8180216d522aeec6aa67b7d1df62c6e96d0d2800192f89b2ae577d6d95c6a0b6a96ccf2788de4d33acd642b461b60bfa11cbeb9c96e56a493bf8
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

© 2018-2024

Terms | Privacy