danabot | 9a4537ed41f8307c11b5c85e70ed82573e3fa7f424178eb7f15c5b4d4d72cde5 | Triage

Submit
Reports

Overview

overview

Static

static

3

99e58ef9d3...91.exe

windows7-x64

99e58ef9d3...91.exe

windows10-2004-x64

Sharing

General

Target

99e58ef9d3f618465d5006d19881e091
Size

1.0MB
Sample

240213-xntx6sfg5y
MD5

99e58ef9d3f618465d5006d19881e091
SHA1

d9bebc4c86cc20a3e3147dfecf56aac64c0c9c3d
SHA256

9a4537ed41f8307c11b5c85e70ed82573e3fa7f424178eb7f15c5b4d4d72cde5
SHA512

6d9222fc696ae003797318e0c79c08e0d62ac77190270bc953d59b0d523fc89351800902ff1e5592907cc100ed022b95c15da4ef59ed759dcd59a3710b6cc4f0
SSDEEP

24576:GZngGrZHlNsQyeq+8O6pd+zjzZAV7ca17QowyQTLzhixN0CDm:GZgGlFOQyeqZO8rlc4Q/ZLziNS

Score

10^/10

danabot 5 banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

99e58ef9d3f618465d5006d19881e091.exe

Resource

win7-20231215-en

danabot 5 banker trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

99e58ef9d3f618465d5006d19881e091.exe

Resource

win10v2004-20231215-en

danabot 5 banker trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

5

C2

192.210.222.81:443

5.9.224.204:443

192.255.166.212:443

Attributes

embedded_hash
100700D372965A717E89B8C909E1D8D4
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  99e58ef9d3f618465d5006d19881e091
- Size
  
  1.0MB
- MD5
  
  99e58ef9d3f618465d5006d19881e091
- SHA1
  
  d9bebc4c86cc20a3e3147dfecf56aac64c0c9c3d
- SHA256
  
  9a4537ed41f8307c11b5c85e70ed82573e3fa7f424178eb7f15c5b4d4d72cde5
- SHA512
  
  6d9222fc696ae003797318e0c79c08e0d62ac77190270bc953d59b0d523fc89351800902ff1e5592907cc100ed022b95c15da4ef59ed759dcd59a3710b6cc4f0
- SSDEEP
  
  24576:GZngGrZHlNsQyeq+8O6pd+zjzZAV7ca17QowyQTLzhixN0CDm:GZgGlFOQyeqZO8rlc4Q/ZLziNS
Score

10^/10

danabot 5 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot5bankertrojan

behavioral2

danabot5bankertrojan

© 2018-2024

Terms | Privacy