General

  • Target

    8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c

  • Size

    1MB

  • Sample

    220731-lj42ssaac3

  • MD5

    6b448c6851f3235c9b3d0c24353c480f

  • SHA1

    f01bfd3a21a887bc85eb6b02baf28f7640513d03

  • SHA256

    8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c

  • SHA512

    663df12c36a4817da30f88072d1195bbbd1b37a4023f0de67b62d0d4deef15bcbb4c2a025648186a22573dba3cd5480701925f0f30cddafff89c053790dffbf3

Malware Config

Extracted

Family

danabot

C2

243.127.43.6

64.126.175.2

130.15.230.152

74.99.136.192

244.14.226.35

95.179.168.37

51.129.76.8

151.210.85.159

45.76.123.177

75.57.14.121

rsa_pubkey.plain

Targets

    • Target

      8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c

    • Size

      1MB

    • MD5

      6b448c6851f3235c9b3d0c24353c480f

    • SHA1

      f01bfd3a21a887bc85eb6b02baf28f7640513d03

    • SHA256

      8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c

    • SHA512

      663df12c36a4817da30f88072d1195bbbd1b37a4023f0de67b62d0d4deef15bcbb4c2a025648186a22573dba3cd5480701925f0f30cddafff89c053790dffbf3

    Score
    10/10
    • Danabot

      Danabot is a modular banking Trojan that has been linked with other malware.

MITRE ATT&CK Matrix

Tasks