danabot | 97b5d69c22f57397a4eb17c5c15429678c09cb530cb48267a809491716a1c794 | Triage

Sharing

General

Target

97b5d69c22f57397a4eb17c5c15429678c09cb530cb48267a809491716a1c794
Size

1.2MB
Sample

220926-ex3mkahdd7
MD5

61e96ce82e0b4d75fb14549a01d34a08
SHA1

c11f3f509fc4cdf2b2849c3f33bf4ed6f9f2449c
SHA256

97b5d69c22f57397a4eb17c5c15429678c09cb530cb48267a809491716a1c794
SHA512

8127d6ce59f680cf6f675c2a6ac140318f9455c30f13c3f7ea3c761e44f4698813daee865ccfdb93a3670afd86be90c45f202c9ac512827c62bbf77248eccb4c
SSDEEP

24576:r+jGtX2PqhdM472XAnoopR9uovrEfKfm36yRioUg6qMjkH24/Vjlj:r+jgX2PKdT7oWoo7fjEhRT6qMjsdl

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

198.15.112.179:443

185.62.56.245:443

153.92.223.225:443

192.119.70.159:443

Attributes

embedded_hash
6618C163D57D6441FCCA65D86C4D380D
type
loader

Targets

- Target
  
  97b5d69c22f57397a4eb17c5c15429678c09cb530cb48267a809491716a1c794
- Size
  
  1.2MB
- MD5
  
  61e96ce82e0b4d75fb14549a01d34a08
- SHA1
  
  c11f3f509fc4cdf2b2849c3f33bf4ed6f9f2449c
- SHA256
  
  97b5d69c22f57397a4eb17c5c15429678c09cb530cb48267a809491716a1c794
- SHA512
  
  8127d6ce59f680cf6f675c2a6ac140318f9455c30f13c3f7ea3c761e44f4698813daee865ccfdb93a3670afd86be90c45f202c9ac512827c62bbf77248eccb4c
- SSDEEP
  
  24576:r+jGtX2PqhdM472XAnoopR9uovrEfKfm36yRioUg6qMjkH24/Vjlj:r+jgX2PKdT7oWoo7fjEhRT6qMjsdl
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan