danabot | 8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c | Triage

Submit
Reports

Overview

overview

Static

static

8c9c56a08b...2c.dll

windows7-x64

8c9c56a08b...2c.dll

windows10-2004-x64

Sharing

General

Target

8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c
Size

1.4MB
Sample

220731-lj42ssaac3
MD5

6b448c6851f3235c9b3d0c24353c480f
SHA1

f01bfd3a21a887bc85eb6b02baf28f7640513d03
SHA256

8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c
SHA512

663df12c36a4817da30f88072d1195bbbd1b37a4023f0de67b62d0d4deef15bcbb4c2a025648186a22573dba3cd5480701925f0f30cddafff89c053790dffbf3

Score

10^/10

danabot banker botnet trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c.dll

Resource

win7-20220718-en

danabot banker trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c.dll

Resource

win10v2004-20220721-en

danabot banker trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

danabot

C2

243.127.43.6

64.126.175.2

130.15.230.152

74.99.136.192

244.14.226.35

95.179.168.37

51.129.76.8

151.210.85.159

45.76.123.177

75.57.14.121

rsa_pubkey.plain

Targets

- Target
  
  8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c
- Size
  
  1.4MB
- MD5
  
  6b448c6851f3235c9b3d0c24353c480f
- SHA1
  
  f01bfd3a21a887bc85eb6b02baf28f7640513d03
- SHA256
  
  8c9c56a08b9cc58d1cc57309695ef07ce367a8a7bfac2485328919a954ea7f2c
- SHA512
  
  663df12c36a4817da30f88072d1195bbbd1b37a4023f0de67b62d0d4deef15bcbb4c2a025648186a22573dba3cd5480701925f0f30cddafff89c053790dffbf3
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan

behavioral2

danabotbankertrojan

© 2018-2024

Terms | Privacy