General
-
Target
NEAS.05e7bc38adb402fe727fa949ebd4a260.exe
-
Size
1.3MB
-
Sample
231102-zkf81sfd5y
-
MD5
05e7bc38adb402fe727fa949ebd4a260
-
SHA1
9c3b21c30b41c67a3ed5d2a6a640501ff8701141
-
SHA256
36108412f7eeee1346d85220e0eab65f8d01e67f509f135453b407ac6bb77dde
-
SHA512
5671468423106f6fb64e59480da177f753eae3ce2edb68c4ee6f7728e7aa8c1a2b2ef1cf65f02d54be63df0533630d2babaec52aab96f8b826fb7c7911f395ff
-
SSDEEP
24576:lcF2mkF3L+taOJE8/2JRi30MrJ4zsTsnvd:G9JE8+3i54gT
Behavioral task
behavioral1
Sample
NEAS.05e7bc38adb402fe727fa949ebd4a260.dll
Resource
win7-20231020-en
Malware Config
Extracted
danabot
4
142.11.242.31:443
192.119.110.73:443
192.210.222.88:443
-
embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
-
type
loader
Targets
-
-
Target
NEAS.05e7bc38adb402fe727fa949ebd4a260.exe
-
Size
1.3MB
-
MD5
05e7bc38adb402fe727fa949ebd4a260
-
SHA1
9c3b21c30b41c67a3ed5d2a6a640501ff8701141
-
SHA256
36108412f7eeee1346d85220e0eab65f8d01e67f509f135453b407ac6bb77dde
-
SHA512
5671468423106f6fb64e59480da177f753eae3ce2edb68c4ee6f7728e7aa8c1a2b2ef1cf65f02d54be63df0533630d2babaec52aab96f8b826fb7c7911f395ff
-
SSDEEP
24576:lcF2mkF3L+taOJE8/2JRi30MrJ4zsTsnvd:G9JE8+3i54gT
-
Danabot Loader Component
-
Blocklisted process makes network request
-