General
-
Target
5709440755597312.zip
-
Size
913KB
-
Sample
220617-zbrndsdcbm
-
MD5
8d03da4b98abf115bb49af90ab59cc2e
-
SHA1
1fa0ee6c14dde6f0712fb52eb3a13084fb6201f5
-
SHA256
223160a552cbf409f2d6dd87ddec5ee75592c53bace88f2dccc827c9e80f7f53
-
SHA512
7b1b514233c720f9e12f57c90cc0f106452e78410944317df17df7539c2946a6c184527579d2d7e6f9cc8bd445d76d3c5caf909b6a8a0fa0da2521c430ec294f
Static task
static1
Behavioral task
behavioral1
Sample
7ea65c1cb2687be42f427571e3223e425d602d043c39f690d0c3c42309aff513.exe
Resource
win7-20220414-en
Malware Config
Extracted
danabot
-
embedded_hash
93390DEC2D9EB6E43445264DBEDDE13F
-
type
loader
Extracted
danabot
5
23.106.122.14:443
5.9.224.217:443
192.236.161.4:443
-
embedded_hash
93390DEC2D9EB6E43445264DBEDDE13F
-
type
loader
Targets
-
-
Target
7ea65c1cb2687be42f427571e3223e425d602d043c39f690d0c3c42309aff513
-
Size
2.3MB
-
MD5
daaefbd8d541235a00593af2bb5a3e27
-
SHA1
428bb7e395f87070d55ef7fa08fe8296d640c20f
-
SHA256
7ea65c1cb2687be42f427571e3223e425d602d043c39f690d0c3c42309aff513
-
SHA512
ed59e719c3de251c456e1a5e8805bdae302440b03e31959ec16088f0a6a725d1f374d6fa6a7b61ecd0f83e7da4e818ea83d32d48374981b94e3071c1c0a10669
-
Blocklisted process makes network request
-