danabot | eeb2bcfb0f5a224ff0fb309a89bac4fdaf9c59c5c125df22f2f35ff92637cbde | Triage

Sharing

General

Target

eeb2bcfb0f5a224ff0fb309a89bac4fdaf9c59c5c125df22f2f35ff92637cbde
Size

1.3MB
Sample

220924-zz4mvscad6
MD5

fab4703674fd0ca48c865ef3d39c24f7
SHA1

4a4ff8b08e6c49527ad85fe4e9da6c4aac671f5b
SHA256

eeb2bcfb0f5a224ff0fb309a89bac4fdaf9c59c5c125df22f2f35ff92637cbde
SHA512

9daaa7930a01371eab490b115173ee4069da1cea712eef42454320d5b0269d82e9f0a0977d27c2b7e42f8e566704f8ccb6e997f8a3270a149a046098c85d981e
SSDEEP

24576:qM6dNsCjukiZaEhOU3e8BiiCBJpVilJ7UqmWx5Yj2yjLmbrPWGGoVJzp5ws3dH/L:/gdCaEQUXUiwJ7C7UeYFjimoVnTdH/L

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

198.15.112.179:443

185.62.56.245:443

153.92.223.225:443

192.119.70.159:443

Attributes

embedded_hash
6618C163D57D6441FCCA65D86C4D380D
type
loader

Targets

- Target
  
  eeb2bcfb0f5a224ff0fb309a89bac4fdaf9c59c5c125df22f2f35ff92637cbde
- Size
  
  1.3MB
- MD5
  
  fab4703674fd0ca48c865ef3d39c24f7
- SHA1
  
  4a4ff8b08e6c49527ad85fe4e9da6c4aac671f5b
- SHA256
  
  eeb2bcfb0f5a224ff0fb309a89bac4fdaf9c59c5c125df22f2f35ff92637cbde
- SHA512
  
  9daaa7930a01371eab490b115173ee4069da1cea712eef42454320d5b0269d82e9f0a0977d27c2b7e42f8e566704f8ccb6e997f8a3270a149a046098c85d981e
- SSDEEP
  
  24576:qM6dNsCjukiZaEhOU3e8BiiCBJpVilJ7UqmWx5Yj2yjLmbrPWGGoVJzp5ws3dH/L:/gdCaEQUXUiwJ7C7UeYFjimoVnTdH/L
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan