danabot | a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962
Size

220KB
Sample

221221-jpxhsseh9z
MD5

276e04678fa2905941b386c8bac0cd9d
SHA1

1a9dfd3e3a31e05fddf6029ffb7a8812a27de5da
SHA256

a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962
SHA512

de28819226f7aa7650d20d6983df4df437bd4c56ba570378c6c27fb8e1d43ce8e225532675e58743fb520f5231a15b6f13bb4d3bda73f037c0aa89cff7729df7
SSDEEP

3072:nYtA0Lv4t15nTYb9FUG444voX8PHtHMD9V+UzKKjphlji7b/PnOoYNHCDml:YHLv4sqw8ftHkUUzKKFW3nqCa

Score

10^/10

danabot banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962.exe

Resource

win10-20220901-en

danabot banker trojan

windows10-1703-x64

20 signatures

150 seconds

Malware Config

Targets

- Target
  
  a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962
- Size
  
  220KB
- MD5
  
  276e04678fa2905941b386c8bac0cd9d
- SHA1
  
  1a9dfd3e3a31e05fddf6029ffb7a8812a27de5da
- SHA256
  
  a188a7591b9d41088a8fa766bd9941ad91c75b0e9e7a17a495dfdc215caa1962
- SHA512
  
  de28819226f7aa7650d20d6983df4df437bd4c56ba570378c6c27fb8e1d43ce8e225532675e58743fb520f5231a15b6f13bb4d3bda73f037c0aa89cff7729df7
- SSDEEP
  
  3072:nYtA0Lv4t15nTYb9FUG444voX8PHtHMD9V+UzKKjphlji7b/PnOoYNHCDml:YHLv4sqw8ftHkUUzKKFW3nqCa
Score

10^/10

danabot banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

danabotbankertrojan

© 2018-2024

Terms | Privacy