danabot | e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11 | Triage

Submit
Reports

Overview

overview

Static

static

e9601c830f...11.dll

windows7_x64

e9601c830f...11.dll

windows10-2004_x64

Sharing

General

Target

e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11
Size

589KB
Sample

220508-h7vw9adhcn
MD5

82b6710f9a208f3fbf128e21d58b3d50
SHA1

92c998953fa8dc4fd8a2d9548e80ea3789752b81
SHA256

e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11
SHA512

2aaedab4cbc0200a1d8535fddc79fbd1f2b26d438b46fd39de532e1eb791641d033be1684262e259f97a0d97d7aaf2cb61a4d1cdd5998e35a8adf793b0936686

Score

10^/10

danabot banker botnet trojan

Static task

static1

Behavioral task

behavioral1

Sample

e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11.dll

Resource

win7-20220414-en

danabot banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11.dll

Resource

win10v2004-20220414-en

danabot banker trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

danabot

C2

10.189.64.123

89.144.25.104

106.137.226.19

233.175.187.96

67.248.84.113

178.209.51.211

157.64.238.1

252.12.144.26

84.19.37.39

44.202.197.21

rsa_pubkey.plain

Targets

- Target
  
  e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11
- Size
  
  589KB
- MD5
  
  82b6710f9a208f3fbf128e21d58b3d50
- SHA1
  
  92c998953fa8dc4fd8a2d9548e80ea3789752b81
- SHA256
  
  e9601c830f3417f81beb5e8364a69a08a5aadf34eae49f88040ea2e5b0de7a11
- SHA512
  
  2aaedab4cbc0200a1d8535fddc79fbd1f2b26d438b46fd39de532e1eb791641d033be1684262e259f97a0d97d7aaf2cb61a4d1cdd5998e35a8adf793b0936686
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan

behavioral2

danabotbankertrojan

© 2018-2024

Terms | Privacy