danabot | 2ac870c0a68f292358d991bc8e37879c59fb524db66c31c9997b0f7f1ccb7047 | Triage

Submit
Reports

Overview

overview

Static

static

3

424ef451d5...b7.exe

windows7-x64

424ef451d5...b7.exe

windows10-2004-x64

Sharing

General

Target

424ef451d542977779ff76f602bcb0b7
Size

1.0MB
Sample

240105-atl37afdf8
MD5

424ef451d542977779ff76f602bcb0b7
SHA1

fc020e74ab51f7f3714762374d45f69d6e636639
SHA256

2ac870c0a68f292358d991bc8e37879c59fb524db66c31c9997b0f7f1ccb7047
SHA512

387d95ecda05997311b0fb5eec775feb8fd5a66e82dde01618b14164d55893e99132220b8cd76f3198e244f83be04a555ede38f3ebd120a6f76efae667935867
SSDEEP

24576:tZU7ALIqtZ8DazuazWKOCG5jejhjXMCsFGQ:tZU7XqPyazPKKBh4f

Score

10^/10

danabot 5 banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

424ef451d542977779ff76f602bcb0b7.exe

Resource

win7-20231215-en

danabot 5 banker trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

424ef451d542977779ff76f602bcb0b7.exe

Resource

win10v2004-20231215-en

danabot 5 banker trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

5

C2

192.210.222.81:443

23.229.29.48:443

5.9.224.204:443

192.255.166.212:443

Attributes

embedded_hash
100700D372965A717E89B8C909E1D8D4
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  424ef451d542977779ff76f602bcb0b7
- Size
  
  1.0MB
- MD5
  
  424ef451d542977779ff76f602bcb0b7
- SHA1
  
  fc020e74ab51f7f3714762374d45f69d6e636639
- SHA256
  
  2ac870c0a68f292358d991bc8e37879c59fb524db66c31c9997b0f7f1ccb7047
- SHA512
  
  387d95ecda05997311b0fb5eec775feb8fd5a66e82dde01618b14164d55893e99132220b8cd76f3198e244f83be04a555ede38f3ebd120a6f76efae667935867
- SSDEEP
  
  24576:tZU7ALIqtZ8DazuazWKOCG5jejhjXMCsFGQ:tZU7XqPyazPKKBh4f
Score

10^/10

danabot 5 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot5bankertrojan

behavioral2

danabot5bankertrojan

© 2018-2024

Terms | Privacy