danabot | 4bbe6ae34fa6f7c48b722cb26d099b2fffcb6c59b445933928ae7d0f5482d90f | Triage

Sharing

General

Target

36e0ad7cc6f1df498cab4bdd607e565f
Size

1.3MB
Sample

231219-qzgzesfhcl
MD5

36e0ad7cc6f1df498cab4bdd607e565f
SHA1

aa6eccefdb96f738ba0273acee02d8541548ea49
SHA256

4bbe6ae34fa6f7c48b722cb26d099b2fffcb6c59b445933928ae7d0f5482d90f
SHA512

d7c8af6db546c985508110f213723a394fcde2ebde77fe1d295c519e2f47178ee481b456ee22eacd2f2b2c4ff17942b177ea8da12270c39fa5ed984dd2da48c6
SSDEEP

24576:KncFdxcZ3Mn9C2vOte0kS+RB39lTlotqT9uy6:BT2FBY9lbTIy6

Score

10^/10

danabot 4

Malware Config

Extracted

Family

danabot

Botnet

4

C2

142.11.242.31:443

192.119.110.73:443

192.210.222.88:443

Attributes

embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
type
loader

rsa_pubkey.plain

rsa_privkey.plain

Targets

- Target
  
  36e0ad7cc6f1df498cab4bdd607e565f
- Size
  
  1.3MB
- MD5
  
  36e0ad7cc6f1df498cab4bdd607e565f
- SHA1
  
  aa6eccefdb96f738ba0273acee02d8541548ea49
- SHA256
  
  4bbe6ae34fa6f7c48b722cb26d099b2fffcb6c59b445933928ae7d0f5482d90f
- SHA512
  
  d7c8af6db546c985508110f213723a394fcde2ebde77fe1d295c519e2f47178ee481b456ee22eacd2f2b2c4ff17942b177ea8da12270c39fa5ed984dd2da48c6
- SSDEEP
  
  24576:KncFdxcZ3Mn9C2vOte0kS+RB39lTlotqT9uy6:BT2FBY9lbTIy6
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2