danabot | ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c
Size

2.5MB
Sample

221209-aa691sbh65
MD5

4b76c1f757fbd9ce87c7dda793822ccc
SHA1

6b3f52b923ef89433922e00015b57f207d35650e
SHA256

ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c
SHA512

c9dc6da9e9b2f723a433b85704ccaaff50e93b6044505c3413d35b18ce92eb22ad8926484fd9bdd3b52eda941e06963e7becd698019f0ec0fd54e379d19ceac9
SSDEEP

49152:B7BLMEtsYQDpVpTCAMkGgFwfQ/gYf1gO89nSejrOH:NBLMEOpVmAD9ufQ/gM15Mnjfs

Score

10^/10

danabot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c.exe

Resource

win10v2004-20221111-en

danabot banker trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Attributes

embedded_hash
341D2FD1638BB267A80C7445E1909B57
type
loader

Targets

- Target
  
  ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c
- Size
  
  2.5MB
- MD5
  
  4b76c1f757fbd9ce87c7dda793822ccc
- SHA1
  
  6b3f52b923ef89433922e00015b57f207d35650e
- SHA256
  
  ac7da3fcbb8606947fe8a2482c4b8258d187b8f50a1ad98b8f4f64b4d409c80c
- SHA512
  
  c9dc6da9e9b2f723a433b85704ccaaff50e93b6044505c3413d35b18ce92eb22ad8926484fd9bdd3b52eda941e06963e7becd698019f0ec0fd54e379d19ceac9
- SSDEEP
  
  49152:B7BLMEtsYQDpVpTCAMkGgFwfQ/gYf1gO89nSejrOH:NBLMEOpVmAD9ufQ/gM15Mnjfs
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Blocklisted process makes network request
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

danabotbankertrojan

© 2018-2024

Terms | Privacy