danabot | 5b0f22ef20623d0b3ff238a802c5c253f214ab94eb53061fa6c763ce6b782dbd | Triage

Sharing

General

Target

5b0f22ef20623d0b3ff238a802c5c253f214ab94eb53061fa6c763ce6b782dbd
Size

1.3MB
Sample

220925-zf5e2shcdm
MD5

8a84d049b059bd8fb4076c293c426b10
SHA1

ee7d65bbde125dd6846f11f76779c3c172218f32
SHA256

5b0f22ef20623d0b3ff238a802c5c253f214ab94eb53061fa6c763ce6b782dbd
SHA512

6e566b0ba207806a9e65f259b1c8c72079070b84ecef45ca1789e35212ea096c9fcfcb7d3b2d530a4f9a7004f2ebddd57b915e9687e86bf991f2a883bff66308
SSDEEP

24576:o2c6v7eT8Ol/On7dFDfAzDoECcCuELCjQ4pW631w7+bdpsD3XYO8OTwpub66o:/Hv7Bj7zfGqcCWE4pW6FUMdpsDYOTwEc

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

198.15.112.179:443

185.62.56.245:443

153.92.223.225:443

192.119.70.159:443

Attributes

embedded_hash
6618C163D57D6441FCCA65D86C4D380D
type
loader

Targets

- Target
  
  5b0f22ef20623d0b3ff238a802c5c253f214ab94eb53061fa6c763ce6b782dbd
- Size
  
  1.3MB
- MD5
  
  8a84d049b059bd8fb4076c293c426b10
- SHA1
  
  ee7d65bbde125dd6846f11f76779c3c172218f32
- SHA256
  
  5b0f22ef20623d0b3ff238a802c5c253f214ab94eb53061fa6c763ce6b782dbd
- SHA512
  
  6e566b0ba207806a9e65f259b1c8c72079070b84ecef45ca1789e35212ea096c9fcfcb7d3b2d530a4f9a7004f2ebddd57b915e9687e86bf991f2a883bff66308
- SSDEEP
  
  24576:o2c6v7eT8Ol/On7dFDfAzDoECcCuELCjQ4pW631w7+bdpsD3XYO8OTwpub66o:/Hv7Bj7zfGqcCWE4pW6FUMdpsDYOTwEc
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan