General
-
Target
ce781f669e19a305eae6e735028a70f99a0288b8197e4499db5183a5dfcadc38
-
Size
5.7MB
-
Sample
230129-wcfqqsfh59
-
MD5
4184f8dbf0d1ffed3679c0fcb6903668
-
SHA1
cb25e6c98904eb86eb9e89bcadaaf11727bcae92
-
SHA256
ce781f669e19a305eae6e735028a70f99a0288b8197e4499db5183a5dfcadc38
-
SHA512
7cf263d34e7fd453515e9416cc01a6bce57ef82eb685be4162702e53aea51127352f5447b0006a7e6e2f124a031259c4b94d02ee7b95de6af965b5c7a16f26f0
-
SSDEEP
98304:LMsN+0u5n2JV1if7m8qRDv/yCRRO1EUQvKt2vY5qw:LMu+0O2J6f7mdRDvqCRYyUQTY5qw
Static task
static1
Behavioral task
behavioral1
Sample
ce781f669e19a305eae6e735028a70f99a0288b8197e4499db5183a5dfcadc38.dll
Resource
win7-20220812-en
Malware Config
Extracted
danabot
1765
3
192.236.162.42:443
152.89.247.114:443
192.3.26.98:443
192.236.146.203:443
-
embedded_hash
B2585F6479280F48B64C99F950BBF36D
-
type
main
Targets
-
-
Target
ce781f669e19a305eae6e735028a70f99a0288b8197e4499db5183a5dfcadc38
-
Size
5.7MB
-
MD5
4184f8dbf0d1ffed3679c0fcb6903668
-
SHA1
cb25e6c98904eb86eb9e89bcadaaf11727bcae92
-
SHA256
ce781f669e19a305eae6e735028a70f99a0288b8197e4499db5183a5dfcadc38
-
SHA512
7cf263d34e7fd453515e9416cc01a6bce57ef82eb685be4162702e53aea51127352f5447b0006a7e6e2f124a031259c4b94d02ee7b95de6af965b5c7a16f26f0
-
SSDEEP
98304:LMsN+0u5n2JV1if7m8qRDv/yCRRO1EUQvKt2vY5qw:LMu+0O2J6f7mdRDvqCRYyUQTY5qw
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-