danabot | 79c78c566a3eef320ab9b6df4da247462250acd908e98be22461929b3fe4ec39 | Triage

Submit
Reports

Overview

overview

Static

static

3

07828a6628...28.exe

windows7-x64

07828a6628...28.exe

windows10-2004-x64

Sharing

General

Target

07828a66286c07d883d03fbac1c7d628
Size

1.1MB
Sample

231219-mk249secc8
MD5

07828a66286c07d883d03fbac1c7d628
SHA1

64721c7e154f07841dd2e30a95dcf3a23033590f
SHA256

79c78c566a3eef320ab9b6df4da247462250acd908e98be22461929b3fe4ec39
SHA512

2c9638990c8088442d2847f3f45d7ccebeed4d0bef0a52f7761a8a4e81be53e683aa3350c617456e10c4d4bb18a205627f7b7169d1f69330cb57a2c5e13cfd6f
SSDEEP

24576:rhxjcpMRNv57ENuzPFUob5/qFKGtd8HjW0YBXoX+jE:rNR77EoX5/qwGjk+Y+jE

Score

10^/10

danabot 4 banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

07828a66286c07d883d03fbac1c7d628.exe

Resource

win7-20231215-en

danabot 4 banker trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

07828a66286c07d883d03fbac1c7d628.exe

Resource

win10v2004-20231215-en

danabot 4 banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.192.232:443

192.119.110.73:443

142.11.242.31:443

192.210.222.88:443

Attributes

embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  07828a66286c07d883d03fbac1c7d628
- Size
  
  1.1MB
- MD5
  
  07828a66286c07d883d03fbac1c7d628
- SHA1
  
  64721c7e154f07841dd2e30a95dcf3a23033590f
- SHA256
  
  79c78c566a3eef320ab9b6df4da247462250acd908e98be22461929b3fe4ec39
- SHA512
  
  2c9638990c8088442d2847f3f45d7ccebeed4d0bef0a52f7761a8a4e81be53e683aa3350c617456e10c4d4bb18a205627f7b7169d1f69330cb57a2c5e13cfd6f
- SSDEEP
  
  24576:rhxjcpMRNv57ENuzPFUob5/qFKGtd8HjW0YBXoX+jE:rNR77EoX5/qwGjk+Y+jE
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

behavioral2

danabot4bankertrojan

© 2018-2024

Terms | Privacy