danabot | dd712295b9c0bd0c0a70779a8089e1db974353d92381febdd9643e96eebed28e | Triage

Sharing

General

Target

dd712295b9c0bd0c0a70779a8089e1db974353d92381febdd9643e96eebed28e
Size

1.3MB
Sample

221009-af5ndagab5
MD5

ddf901d59730a213c68741126f854087
SHA1

c27756f164ae3ec032f8c1e6e1fa0c43b73ef051
SHA256

dd712295b9c0bd0c0a70779a8089e1db974353d92381febdd9643e96eebed28e
SHA512

26bd42df5f4924730cbb330bacef1f51ca04b113b2f298606f434d524c7b9c0aead89ba8466bc944a9d84a21255150dd95b401090c3aed94ba5152c249cf85d3
SSDEEP

24576:yryROQzthfGuKqMJGSq8VdwlM0mdhVxbkmd6Tu+SOI5NFk6n245JmIFYHMh:ye5nfVMJw8VdM8dhVn6T5SOIVk6TEI

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

192.236.233.188:443

192.119.70.159:443

23.106.124.171:443

213.227.155.103:443

Attributes

embedded_hash
56951C922035D696BFCE443750496462
type
loader

Targets

- Target
  
  dd712295b9c0bd0c0a70779a8089e1db974353d92381febdd9643e96eebed28e
- Size
  
  1.3MB
- MD5
  
  ddf901d59730a213c68741126f854087
- SHA1
  
  c27756f164ae3ec032f8c1e6e1fa0c43b73ef051
- SHA256
  
  dd712295b9c0bd0c0a70779a8089e1db974353d92381febdd9643e96eebed28e
- SHA512
  
  26bd42df5f4924730cbb330bacef1f51ca04b113b2f298606f434d524c7b9c0aead89ba8466bc944a9d84a21255150dd95b401090c3aed94ba5152c249cf85d3
- SSDEEP
  
  24576:yryROQzthfGuKqMJGSq8VdwlM0mdhVxbkmd6Tu+SOI5NFk6n245JmIFYHMh:ye5nfVMJw8VdM8dhVn6T5SOIVk6TEI
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan