danabot | d35b3f1f8daf9577b92b121a004a4bc0c15f299741f095a5837a41ff6a9dc5dd | Triage

Sharing

General

Target

d35b3f1f8daf9577b92b121a004a4bc0c15f299741f095a5837a41ff6a9dc5dd
Size

1.2MB
Sample

220926-r2xy4accdr
MD5

ad0167a2f662c97e21a5b911c7de36cf
SHA1

2749ea7cf4848bca7286dcdfd3a0c60d970c7669
SHA256

d35b3f1f8daf9577b92b121a004a4bc0c15f299741f095a5837a41ff6a9dc5dd
SHA512

33e3a26494708c4d9d5654d4e6318543465d1c081fbf0803732f7a5e23497f98c2ac0ea3a72e4755cc818e5554fd09a21f167a137fa946d50418f3ca782fb1c0
SSDEEP

24576:CX1RiLWrAoxsfIzfFu9S+15tueAghTR0z3ho/M/N9P1eZRihR9zZ:CX1RiCMfSsxuI8zxo/6kZkR9

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

198.15.112.179:443

185.62.56.245:443

153.92.223.225:443

192.119.70.159:443

Attributes

embedded_hash
6618C163D57D6441FCCA65D86C4D380D
type
loader

Targets

- Target
  
  d35b3f1f8daf9577b92b121a004a4bc0c15f299741f095a5837a41ff6a9dc5dd
- Size
  
  1.2MB
- MD5
  
  ad0167a2f662c97e21a5b911c7de36cf
- SHA1
  
  2749ea7cf4848bca7286dcdfd3a0c60d970c7669
- SHA256
  
  d35b3f1f8daf9577b92b121a004a4bc0c15f299741f095a5837a41ff6a9dc5dd
- SHA512
  
  33e3a26494708c4d9d5654d4e6318543465d1c081fbf0803732f7a5e23497f98c2ac0ea3a72e4755cc818e5554fd09a21f167a137fa946d50418f3ca782fb1c0
- SSDEEP
  
  24576:CX1RiLWrAoxsfIzfFu9S+15tueAghTR0z3ho/M/N9P1eZRihR9zZ:CX1RiCMfSsxuI8zxo/6kZkR9
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan