danabot | d6878a676524be680ae3e587a6838fec628982c17dedd400285c7483ddd8a037 | Triage

Submit
Reports

Overview

overview

Static

static

925de62df9...e3.dll

windows7-x64

925de62df9...e3.dll

windows10-2004-x64

Sharing

General

Target

925de62df999c30eb1c453001cf70ae3
Size

1.3MB
Sample

231219-y4mz8schep
MD5

925de62df999c30eb1c453001cf70ae3
SHA1

c112bbc17a585a07e3be9ca9228f4cb05bb6fa66
SHA256

d6878a676524be680ae3e587a6838fec628982c17dedd400285c7483ddd8a037
SHA512

c5180b55bf43bfc41938f8d873f8f27c7e5e2f72b55fbcb96c1f07d31bddd7e78d415469e3033a9b095e5cbb8e80bf229ddcb2e0cd2cff979b874b09bcb358d1
SSDEEP

24576:lcF2L9dT0secg4cOeMDBj2Zsrm0Ty0zWPTzK:GyjFjMTeCTu

Score

10^/10

danabot 4 banker trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

925de62df999c30eb1c453001cf70ae3.dll

Resource

win7-20231215-en

danabot 4 banker trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

925de62df999c30eb1c453001cf70ae3.dll

Resource

win10v2004-20231215-en

danabot 4 banker trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.242.31:443

192.119.110.73:443

192.210.222.88:443

Attributes

embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  925de62df999c30eb1c453001cf70ae3
- Size
  
  1.3MB
- MD5
  
  925de62df999c30eb1c453001cf70ae3
- SHA1
  
  c112bbc17a585a07e3be9ca9228f4cb05bb6fa66
- SHA256
  
  d6878a676524be680ae3e587a6838fec628982c17dedd400285c7483ddd8a037
- SHA512
  
  c5180b55bf43bfc41938f8d873f8f27c7e5e2f72b55fbcb96c1f07d31bddd7e78d415469e3033a9b095e5cbb8e80bf229ddcb2e0cd2cff979b874b09bcb358d1
- SSDEEP
  
  24576:lcF2L9dT0secg4cOeMDBj2Zsrm0Ty0zWPTzK:GyjFjMTeCTu
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

behavioral2

danabot4bankertrojan

© 2018-2024

Terms | Privacy