danabot | abe0c546fa9e5be61b51f294b2ac934285d755e0cedff611e382005109dd94af | Triage

Sharing

General

Target

abe0c546fa9e5be61b51f294b2ac934285d755e0cedff611e382005109dd94af
Size

1.3MB
Sample

221019-psg56sfgf8
MD5

76382b7d0f6adf19177349a6bba70871
SHA1

aebd1817e812aba0256e6601dc0d6b50422f6978
SHA256

abe0c546fa9e5be61b51f294b2ac934285d755e0cedff611e382005109dd94af
SHA512

905f20366cceb2e6768ce2c918b08f2876a23065517351fc5d6bd67af62297ae3acd77c7083a78b9d83415517dab5fa95a5734536a743ba31c8834848f9e3537
SSDEEP

24576:4T0rUloXAX1f/E6Afb7r2kfFDih9OAUPkYuaatFz+cGMmaXG+mu9pjRjdQ5:4TEUOE1PAfJFOh9OAkk9vFRG0vVBdQ5

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

192.236.233.188:443

192.119.70.159:443

23.106.124.171:443

213.227.155.103:443

Attributes

embedded_hash
56951C922035D696BFCE443750496462
type
loader

Targets

- Target
  
  abe0c546fa9e5be61b51f294b2ac934285d755e0cedff611e382005109dd94af
- Size
  
  1.3MB
- MD5
  
  76382b7d0f6adf19177349a6bba70871
- SHA1
  
  aebd1817e812aba0256e6601dc0d6b50422f6978
- SHA256
  
  abe0c546fa9e5be61b51f294b2ac934285d755e0cedff611e382005109dd94af
- SHA512
  
  905f20366cceb2e6768ce2c918b08f2876a23065517351fc5d6bd67af62297ae3acd77c7083a78b9d83415517dab5fa95a5734536a743ba31c8834848f9e3537
- SSDEEP
  
  24576:4T0rUloXAX1f/E6Afb7r2kfFDih9OAUPkYuaatFz+cGMmaXG+mu9pjRjdQ5:4TEUOE1PAfJFOh9OAkk9vFRG0vVBdQ5
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan