General
-
Target
69979809fecc57b711cffe5be95f7170
-
Size
1.3MB
-
Sample
240120-f2r73acgd5
-
MD5
69979809fecc57b711cffe5be95f7170
-
SHA1
9bc9e03e6ec35555fd9786f444d4d5d23a0f5c41
-
SHA256
766727cc1c007b52b500bdd8d387875f9a67fe0ac5608896eba841cb4e606807
-
SHA512
47fb7b051ccb877c463cd93b0c46b293331b9f6ab695463523b1a3f4eb3ee0e18d2e3e098da145f37984e3b1a63f31dd0e90ba35ccff3e946f83182e00d01d14
-
SSDEEP
12288:Ns8Fy+Hu9nN4vYH2a7Ncf04W2O/SYOsm99UXUkTeMRsHQ0:S8FGyvFaRg04W2O6YOsm99YTeMyH
Behavioral task
behavioral1
Sample
69979809fecc57b711cffe5be95f7170.dll
Resource
win7-20231215-en
Malware Config
Extracted
danabot
4
23.229.29.48:443
192.210.222.81:443
-
embedded_hash
0E1A7A1479C37094441FA911262B322A
-
type
loader
Targets
-
-
Target
69979809fecc57b711cffe5be95f7170
-
Size
1.3MB
-
MD5
69979809fecc57b711cffe5be95f7170
-
SHA1
9bc9e03e6ec35555fd9786f444d4d5d23a0f5c41
-
SHA256
766727cc1c007b52b500bdd8d387875f9a67fe0ac5608896eba841cb4e606807
-
SHA512
47fb7b051ccb877c463cd93b0c46b293331b9f6ab695463523b1a3f4eb3ee0e18d2e3e098da145f37984e3b1a63f31dd0e90ba35ccff3e946f83182e00d01d14
-
SSDEEP
12288:Ns8Fy+Hu9nN4vYH2a7Ncf04W2O/SYOsm99UXUkTeMRsHQ0:S8FGyvFaRg04W2O6YOsm99YTeMyH
-
Danabot Loader Component
-
Blocklisted process makes network request
-