danabot | e21942980fbef9cda809fd219ef60e1670a5597ff18512f8589b3a35d9b5ca9b | Triage

Sharing

General

Target

e21942980fbef9cda809fd219ef60e1670a5597ff18512f8589b3a35d9b5ca9b
Size

1.3MB
Sample

221027-m9zensbhe5
MD5

27ff83e9f47490f3984e99882f5eb93f
SHA1

e78ba9266702c1bf4e7e65780baee7d7063d0b54
SHA256

e21942980fbef9cda809fd219ef60e1670a5597ff18512f8589b3a35d9b5ca9b
SHA512

81ee797507e62655ab249be085b1482c2ffc4af3aba50f95ded43f1d8ae5e507d3a4dcb2b290b5136334f62d8c36ed63626e7a357898f0577f256353457d8da1
SSDEEP

24576:WJabujprZAscjifhgF91Kqbrrgr2uSMfEV8gq7RmB+fcJsQDyv+OcZQ3:WI6jprZAsuSgF91Kq8rXz684oRQDyWvW

Score

10^/10

danabot banker trojan

Malware Config

Extracted

Family

danabot

C2

172.86.120.215:443

213.227.155.103:443

103.187.26.147:443

172.86.120.138:443

Attributes

embedded_hash
BBBB0DB8CB7E6D152424535822E445A7
type
loader

Targets

- Target
  
  e21942980fbef9cda809fd219ef60e1670a5597ff18512f8589b3a35d9b5ca9b
- Size
  
  1.3MB
- MD5
  
  27ff83e9f47490f3984e99882f5eb93f
- SHA1
  
  e78ba9266702c1bf4e7e65780baee7d7063d0b54
- SHA256
  
  e21942980fbef9cda809fd219ef60e1670a5597ff18512f8589b3a35d9b5ca9b
- SHA512
  
  81ee797507e62655ab249be085b1482c2ffc4af3aba50f95ded43f1d8ae5e507d3a4dcb2b290b5136334f62d8c36ed63626e7a357898f0577f256353457d8da1
- SSDEEP
  
  24576:WJabujprZAscjifhgF91Kqbrrgr2uSMfEV8gq7RmB+fcJsQDyv+OcZQ3:WI6jprZAsuSgF91Kq8rXz684oRQDyWvW
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabotbankertrojan