danabot | 12d26c2ffa94616c2b92b0bab5c9fb335bc1783a9e0ddae0a6dcb3b5a250bb52 | Triage

Sharing

General

Target

2068-145-0x0000000000400000-0x0000000000671000-memory.dmp
Size

2.4MB
Sample

221218-l2c12abd83
MD5

f99567d2451f6cb8c94eaba5f007bc0e
SHA1

c0905c3e2fee649272f1a8b3e33e2ac8916e0c64
SHA256

12d26c2ffa94616c2b92b0bab5c9fb335bc1783a9e0ddae0a6dcb3b5a250bb52
SHA512

cef54ac65297ce75f66e676667375c7b517729459523499abc0f15c8763fb177d4424c9f8f1d0d61ce49cdd49680c148a1d912f3d16eb252705fd5909fa0ec74
SSDEEP

49152:zrqVHNsAsWe8AdaSTBfA3XGGuGAT4rxZ:zaPenfA32irz

Score

10^/10

danabot

Malware Config

Extracted

Family

danabot

Attributes

embedded_hash
B3EDAC43C91B09AD307C06053739571B
type
loader

Targets

- Target
  
  2068-145-0x0000000000400000-0x0000000000671000-memory.dmp
- Size
  
  2.4MB
- MD5
  
  f99567d2451f6cb8c94eaba5f007bc0e
- SHA1
  
  c0905c3e2fee649272f1a8b3e33e2ac8916e0c64
- SHA256
  
  12d26c2ffa94616c2b92b0bab5c9fb335bc1783a9e0ddae0a6dcb3b5a250bb52
- SHA512
  
  cef54ac65297ce75f66e676667375c7b517729459523499abc0f15c8763fb177d4424c9f8f1d0d61ce49cdd49680c148a1d912f3d16eb252705fd5909fa0ec74
- SSDEEP
  
  49152:zrqVHNsAsWe8AdaSTBfA3XGGuGAT4rxZ:zaPenfA32irz
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2