General
-
Target
ee0129de26021b66dcbbd902963e1f4dbef5688c76984484a124b0914f8681ff
-
Size
153KB
-
Sample
220926-tgctjacdgn
-
MD5
7bd537a8dfa91ec83e264ceefe3f0e26
-
SHA1
b1ffa33c2760f23d4de2900907273c9736f82557
-
SHA256
ee0129de26021b66dcbbd902963e1f4dbef5688c76984484a124b0914f8681ff
-
SHA512
1bac14ae3681a9aefc99f11a6be9dd997f99a1d8c2f8f36d1397c7344440fbf02b9df6867b27b9b38aaa710e2cabff40f5ba38b1fdd3118c81f322d6d1033562
-
SSDEEP
1536:U3SgqQYcZsSPTyGTc5BZOsv0sCXhlJpVTbXQ5VEPl4SknT5jmFQtjYj1Ei/WV/Jz:UCgJfJTc5TZeXFTbXQAGSc5+vBaNl5B
Static task
static1
Behavioral task
behavioral1
Sample
ee0129de26021b66dcbbd902963e1f4dbef5688c76984484a124b0914f8681ff.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
danabot
198.15.112.179:443
185.62.56.245:443
153.92.223.225:443
192.119.70.159:443
-
embedded_hash
6618C163D57D6441FCCA65D86C4D380D
-
type
loader
Targets
-
-
Target
ee0129de26021b66dcbbd902963e1f4dbef5688c76984484a124b0914f8681ff
-
Size
153KB
-
MD5
7bd537a8dfa91ec83e264ceefe3f0e26
-
SHA1
b1ffa33c2760f23d4de2900907273c9736f82557
-
SHA256
ee0129de26021b66dcbbd902963e1f4dbef5688c76984484a124b0914f8681ff
-
SHA512
1bac14ae3681a9aefc99f11a6be9dd997f99a1d8c2f8f36d1397c7344440fbf02b9df6867b27b9b38aaa710e2cabff40f5ba38b1fdd3118c81f322d6d1033562
-
SSDEEP
1536:U3SgqQYcZsSPTyGTc5BZOsv0sCXhlJpVTbXQ5VEPl4SknT5jmFQtjYj1Ei/WV/Jz:UCgJfJTc5TZeXFTbXQAGSc5+vBaNl5B
Score10/10-
Detects Smokeloader packer
-
Blocklisted process makes network request
-
Downloads MZ/PE file
-
Executes dropped EXE
-