danabot | 69dc7fa6f994a5275e65d718049370402327b2f17f68ccf4950c10a15dc1d2e9 | Triage

Sharing

General

Target

JaffaCakes118_69dc7fa6f994a5275e65d718049370402327b2f17f68ccf4950c10a15dc1d2e9
Size

2.3MB
Sample

241226-29sdpavjfv
MD5

87ab41a3eb754ff859a264c7114b9066
SHA1

c60a5d955d2f730742341ffa9548fb4d264624d7
SHA256

69dc7fa6f994a5275e65d718049370402327b2f17f68ccf4950c10a15dc1d2e9
SHA512

3a9ef627ec97085f7c607106f72601076020babd79a6badd33bf1614fad49e017f3bbd2d4b1e66197615330c5c7f839a2987ca55e68d0b805be71ae3eda2f2c2
SSDEEP

49152:egLW1DLQjokdvsrJOwDjdHImM6muJtbWWUSBSz5hMtiOc9D7:L+LQcUvsrJVxMqfb5USA5uS

Score

10^/10

danabot banker discovery trojan

Malware Config

Extracted

Family

danabot

C2

153.92.223.225:443

185.62.56.245:443

198.15.112.179:443

Attributes

embedded_hash
5B850BFD39D47030C0AAC0024D43ABEA
type
loader

Targets

- Target
  
  JaffaCakes118_69dc7fa6f994a5275e65d718049370402327b2f17f68ccf4950c10a15dc1d2e9
- Size
  
  2.3MB
- MD5
  
  87ab41a3eb754ff859a264c7114b9066
- SHA1
  
  c60a5d955d2f730742341ffa9548fb4d264624d7
- SHA256
  
  69dc7fa6f994a5275e65d718049370402327b2f17f68ccf4950c10a15dc1d2e9
- SHA512
  
  3a9ef627ec97085f7c607106f72601076020babd79a6badd33bf1614fad49e017f3bbd2d4b1e66197615330c5c7f839a2987ca55e68d0b805be71ae3eda2f2c2
- SSDEEP
  
  49152:egLW1DLQjokdvsrJOwDjdHImM6muJtbWWUSBSz5hMtiOc9D7:L+LQcUvsrJVxMqfb5USA5uS
Score

10^/10

danabot banker discovery trojan
- Danabot
  Danabot is a modular banking Trojan that has been linked with other malware.
  trojan banker danabot
- Danabot family
  danabot
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

danabotbankerdiscoverytrojan

behavioral2

danabotbankerdiscoverytrojan