danabot | 40620ee4884dd5f585c7d8286bda375535af329154ec44e5826ac84e9716156e | Triage

Submit
Reports

Overview

overview

Static

static

fdc145d464...18.dll

windows7-x64

fdc145d464...18.dll

windows10-2004-x64

Sharing

General

Target

fdc145d46403a4ab4f3c271038e9b71a_JaffaCakes118
Size

1.3MB
Sample

240420-12c4csbb79
MD5

fdc145d46403a4ab4f3c271038e9b71a
SHA1

265116608b06a2926e54c76044a78493e81ba5dc
SHA256

40620ee4884dd5f585c7d8286bda375535af329154ec44e5826ac84e9716156e
SHA512

60f08391a725392538870559550118c5eea0b3b871052e0dae3b95e9f592e595a1c6b054b72def306ce6ea907dcb86ede04b7e6e0c0b4d356e085bc192c19ff2
SSDEEP

24576:lcF2L9dT0secg4cOeMDBj2Zsrm0Ty0zjPTzK:GyjFjMTe3Tu

Score

10^/10

danabot 4 banker trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

fdc145d46403a4ab4f3c271038e9b71a_JaffaCakes118.dll

Resource

win7-20240215-en

danabot 4 banker trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fdc145d46403a4ab4f3c271038e9b71a_JaffaCakes118.dll

Resource

win10v2004-20240412-en

danabot 4 banker trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.242.31:443

192.119.110.73:443

192.210.222.88:443

Attributes

embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  fdc145d46403a4ab4f3c271038e9b71a_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  fdc145d46403a4ab4f3c271038e9b71a
- SHA1
  
  265116608b06a2926e54c76044a78493e81ba5dc
- SHA256
  
  40620ee4884dd5f585c7d8286bda375535af329154ec44e5826ac84e9716156e
- SHA512
  
  60f08391a725392538870559550118c5eea0b3b871052e0dae3b95e9f592e595a1c6b054b72def306ce6ea907dcb86ede04b7e6e0c0b4d356e085bc192c19ff2
- SSDEEP
  
  24576:lcF2L9dT0secg4cOeMDBj2Zsrm0Ty0zjPTzK:GyjFjMTe3Tu
Score

10^/10

danabot 4 banker trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot Loader Component
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

danabot4bankertrojan

behavioral2

danabot4bankertrojan

© 2018-2024

Terms | Privacy