General

  • Target

    7417ee2722871b2c667174acc43dd3e79fcdd41bef9a48209eeae0ed43179e1f

  • Size

    1.9MB

  • Sample

    231227-gegngshae4

  • MD5

    137215315ebf1a920f6ca96be486e358

  • SHA1

    415f9b8794e7a275df66a0bda548b83d22a8636e

  • SHA256

    7417ee2722871b2c667174acc43dd3e79fcdd41bef9a48209eeae0ed43179e1f

  • SHA512

    217a084c5bef4e9656528490b30337f3261f3c84ed3845e80600ee14e154c0912778db49a7412598def09d69ec9d81000a403b223be6d95f450caa6b3dcb6b47

  • SSDEEP

    24576:ovJy1cqPkeu+kfgqu4ebFUBvawaWDIXDmOgMAbjhlPdvvFGuVP5iEzM4zT0pjss1:oxBHpa3WDv3hpdvv8uJMQBTA

Score
10/10

Malware Config

Extracted

Family

danabot

C2

35.198.55.140:443

34.79.119.253:443

34.106.84.60:443

35.241.250.23:443

Attributes
  • embedded_hash

    32283E415C433DE356C9557DF0309441

  • type

    loader

Targets

    • Target

      7417ee2722871b2c667174acc43dd3e79fcdd41bef9a48209eeae0ed43179e1f

    • Size

      1.9MB

    • MD5

      137215315ebf1a920f6ca96be486e358

    • SHA1

      415f9b8794e7a275df66a0bda548b83d22a8636e

    • SHA256

      7417ee2722871b2c667174acc43dd3e79fcdd41bef9a48209eeae0ed43179e1f

    • SHA512

      217a084c5bef4e9656528490b30337f3261f3c84ed3845e80600ee14e154c0912778db49a7412598def09d69ec9d81000a403b223be6d95f450caa6b3dcb6b47

    • SSDEEP

      24576:ovJy1cqPkeu+kfgqu4ebFUBvawaWDIXDmOgMAbjhlPdvvFGuVP5iEzM4zT0pjss1:oxBHpa3WDv3hpdvv8uJMQBTA

    Score
    10/10
    • Danabot

      Danabot is a modular banking Trojan that has been linked with other malware.

MITRE ATT&CK Matrix

Tasks