danabot | 7cdcea9fb45bdbbf0019db23d02628e7aabd68695d532a74961bafaf871788d0 | Triage

Sharing

General

Target

7cdcea9fb45bdbbf0019db23d02628e7aabd68695d532a74961bafaf871788d0
Size

1.3MB
Sample

221015-qyv5naffc7
MD5

e485a261c9368af069b3cb7582030fa9
SHA1

89723ca58ae2b6d40f75cb3a0bedb3afc85e894b
SHA256

7cdcea9fb45bdbbf0019db23d02628e7aabd68695d532a74961bafaf871788d0
SHA512

611d8aa204f0abd8d760e28b191642d9039ca7a56f1880818bd9d5f307652a5df61c35f109e6cdef717158a1caca4c4e3460eba70a402433c08227051e332ce4
SSDEEP

24576:M8pCIlF/FcqUyzcIWSGYhWQSB/WNEfQ+z5aENSqIlLUNfA8AZmz6/SLRVP1/Ufmc:3/PU0W3YqWNe1KflUmtZmW/0NclTjbj

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

192.236.233.188:443

192.119.70.159:443

23.106.124.171:443

213.227.155.103:443

Attributes

embedded_hash
56951C922035D696BFCE443750496462
type
loader

Targets

- Target
  
  7cdcea9fb45bdbbf0019db23d02628e7aabd68695d532a74961bafaf871788d0
- Size
  
  1.3MB
- MD5
  
  e485a261c9368af069b3cb7582030fa9
- SHA1
  
  89723ca58ae2b6d40f75cb3a0bedb3afc85e894b
- SHA256
  
  7cdcea9fb45bdbbf0019db23d02628e7aabd68695d532a74961bafaf871788d0
- SHA512
  
  611d8aa204f0abd8d760e28b191642d9039ca7a56f1880818bd9d5f307652a5df61c35f109e6cdef717158a1caca4c4e3460eba70a402433c08227051e332ce4
- SSDEEP
  
  24576:M8pCIlF/FcqUyzcIWSGYhWQSB/WNEfQ+z5aENSqIlLUNfA8AZmz6/SLRVP1/Ufmc:3/PU0W3YqWNe1KflUmtZmW/0NclTjbj
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan