Overview

overview

10

Static

static

malware_sm...90.exe

windows7-x64

10

malware_sm...90.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    malware_smoke_3900822290

  • Size

    1.1MB

  • Sample

    221004-ptnpcaahf5

  • MD5

    aecb3fdebc29b15a92535bbbd21d295c

  • SHA1

    aba867d33123b33a1d21f7db6f05472721e2f5ef

  • SHA256

    380799a1cfe4311c17c4c6240ac65d8337e55679a547e57621ac3c8c9233315f

  • SHA512

    6ec34ae1e2141c3faee6f724fb0f5ae998b574ac765bfac0c21d5915c416085f50b6b3f500ebe787b6efb61b36ee9a19807278ae64d2a68e4ff53d6a5c499f99

  • SSDEEP

    24576:oiMdCm9+HP+xWXeHSoejsC5GL/6YkRkE26tW3Pk4d:o4NOKDw/6A84

Score
10/10
danabot5bankertrojan

Malware Config

Extracted

Family

danabot

Botnet

5

Attributes
  • embedded_hash

    C9710462E1D60893F562FB2B07EC3B66

  • type

    loader

Targets

    • Target

      malware_smoke_3900822290

    • Size

      1.1MB

    • MD5

      aecb3fdebc29b15a92535bbbd21d295c

    • SHA1

      aba867d33123b33a1d21f7db6f05472721e2f5ef

    • SHA256

      380799a1cfe4311c17c4c6240ac65d8337e55679a547e57621ac3c8c9233315f

    • SHA512

      6ec34ae1e2141c3faee6f724fb0f5ae998b574ac765bfac0c21d5915c416085f50b6b3f500ebe787b6efb61b36ee9a19807278ae64d2a68e4ff53d6a5c499f99

    • SSDEEP

      24576:oiMdCm9+HP+xWXeHSoejsC5GL/6YkRkE26tW3Pk4d:o4NOKDw/6A84

    Score
    10/10
    danabot5bankertrojan

    • Danabot

      Danabot is a modular banking Trojan that has been linked with other malware.

      trojanbankerdanabot

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks