danabot | 9cc4d2b884d5653bc627c3c02512195dac5da3a92bb38b918deb2d7cc68256f7 | Triage

Sharing

General

Target

9cc4d2b884d5653bc627c3c02512195dac5da3a92bb38b918deb2d7cc68256f7
Size

1.2MB
Sample

221002-j85cragfak
MD5

aa2864ecd1726dad6da205ada6caa5ea
SHA1

6af6da5cadfb451a4cdaa3c883d22a3035264f9c
SHA256

9cc4d2b884d5653bc627c3c02512195dac5da3a92bb38b918deb2d7cc68256f7
SHA512

467c7fb9501ef93f8c17cde064ef5649a27f6861cb5b561128a0c89387bd28e684ca2fcb0aa1c13e49e5a9d972fdeac47664255e50d9694d93a19e0b4e9125bf
SSDEEP

24576:mIof08Wjll6L5Ou2V15buSeME4ybfK0h272ppe0pjIlZ+vWwcUO:mIoMfjn6LwdySefjmf72bfjm6c

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

192.236.233.188:443

192.119.70.159:443

23.106.124.171:443

Attributes

embedded_hash
F11D3871631E16E8DE15C24B32328D98
type
loader

Targets

- Target
  
  9cc4d2b884d5653bc627c3c02512195dac5da3a92bb38b918deb2d7cc68256f7
- Size
  
  1.2MB
- MD5
  
  aa2864ecd1726dad6da205ada6caa5ea
- SHA1
  
  6af6da5cadfb451a4cdaa3c883d22a3035264f9c
- SHA256
  
  9cc4d2b884d5653bc627c3c02512195dac5da3a92bb38b918deb2d7cc68256f7
- SHA512
  
  467c7fb9501ef93f8c17cde064ef5649a27f6861cb5b561128a0c89387bd28e684ca2fcb0aa1c13e49e5a9d972fdeac47664255e50d9694d93a19e0b4e9125bf
- SSDEEP
  
  24576:mIof08Wjll6L5Ou2V15buSeME4ybfK0h272ppe0pjIlZ+vWwcUO:mIoMfjn6LwdySefjmf72bfjm6c
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan