General
-
Target
48aa266728d91e139a0c7d10c7124e8b356b31ef1badc46619287472bd6d10ec
-
Size
5.7MB
-
Sample
230129-wcdw5shc8y
-
MD5
c0460c56cc4b6fad8fd534abafb97897
-
SHA1
91f9efb3f885b23117fe7f9000728c265ada974f
-
SHA256
48aa266728d91e139a0c7d10c7124e8b356b31ef1badc46619287472bd6d10ec
-
SHA512
e78aa3b15cf347cae27ce98d9ff8e46f48310077eecbda9a2a7c0d29ec3c403d4d0cc8a490486f2a4527de6731249a603aae1d77205d4378e43456d8644229d0
-
SSDEEP
98304:QcL6V9pbhMMBnat31FgKEOtN3RiXbW0JmHnrGjJi/eFi3H:Qi+9p1MMBnc31yKE2NhiXb/JmHrGg/Sy
Static task
static1
Behavioral task
behavioral1
Sample
48aa266728d91e139a0c7d10c7124e8b356b31ef1badc46619287472bd6d10ec.dll
Resource
win7-20220812-en
Malware Config
Extracted
danabot
1765
3
192.236.162.42:443
152.89.247.114:443
192.3.26.98:443
192.236.146.203:443
-
embedded_hash
B2585F6479280F48B64C99F950BBF36D
-
type
main
Targets
-
-
Target
48aa266728d91e139a0c7d10c7124e8b356b31ef1badc46619287472bd6d10ec
-
Size
5.7MB
-
MD5
c0460c56cc4b6fad8fd534abafb97897
-
SHA1
91f9efb3f885b23117fe7f9000728c265ada974f
-
SHA256
48aa266728d91e139a0c7d10c7124e8b356b31ef1badc46619287472bd6d10ec
-
SHA512
e78aa3b15cf347cae27ce98d9ff8e46f48310077eecbda9a2a7c0d29ec3c403d4d0cc8a490486f2a4527de6731249a603aae1d77205d4378e43456d8644229d0
-
SSDEEP
98304:QcL6V9pbhMMBnat31FgKEOtN3RiXbW0JmHnrGjJi/eFi3H:Qi+9p1MMBnc31yKE2NhiXb/JmHrGg/Sy
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-