danabot | 3fde70aec3497bc38df7518fcf190ae5ebbdd8c85976c28a17f7a43eaac9e92b | Triage

Submit
Reports

Overview

overview

Static

static

ee13cc90fa...18.dll

windows7-x64

ee13cc90fa...18.dll

windows10-2004-x64

Sharing

General

Target

ee13cc90fabfc6ac9c4e8a00ed3805af_JaffaCakes118
Size

1.3MB
Sample

240411-w6l5lscg8x
MD5

ee13cc90fabfc6ac9c4e8a00ed3805af
SHA1

b50098d0e99a9f0f88624e58701c1a9570e421ae
SHA256

3fde70aec3497bc38df7518fcf190ae5ebbdd8c85976c28a17f7a43eaac9e92b
SHA512

5d0523bb8753f9bb6043df3d3e62cb0e479581e48b41efd86bc2a2c99c98654f5fcf36aa3366fbf8c30739296269b5b48b1d4d81a364d862e540fe7204ed4537
SSDEEP

24576:1cFPyo6btoASOimlkWOD+DmKj5kjsfSPdITDjPpwbz:2WkPEj5kw6STvPp

Score

10^/10

danabot 4 banker trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ee13cc90fabfc6ac9c4e8a00ed3805af_JaffaCakes118.dll

Resource

win7-20240221-en

danabot 4 banker trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee13cc90fabfc6ac9c4e8a00ed3805af_JaffaCakes118.dll

Resource

win10v2004-20240319-en

danabot 4 banker trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.244.124:443

142.11.206.50:443

Attributes

embedded_hash
6AD9FE4F9E491E785665E0D144F61DAB
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  ee13cc90fabfc6ac9c4e8a00ed3805af_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  ee13cc90fabfc6ac9c4e8a00ed3805af
- SHA1
  
  b50098d0e99a9f0f88624e58701c1a9570e421ae
- SHA256
  
  3fde70aec3497bc38df7518fcf190ae5ebbdd8c85976c28a17f7a43eaac9e92b
- SHA512
  
  5d0523bb8753f9bb6043df3d3e62cb0e479581e48b41efd86bc2a2c99c98654f5fcf36aa3366fbf8c30739296269b5b48b1d4d81a364d862e540fe7204ed4537
- SSDEEP
  
  24576:1cFPyo6btoASOimlkWOD+DmKj5kjsfSPdITDjPpwbz:2WkPEj5kw6STvPp
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

behavioral2

danabot4bankertrojan

© 2018-2024

Terms | Privacy