General
-
Target
80450a6fd44277fa7c6883ee59093f72
-
Size
5.7MB
-
Sample
240129-tk5nqafbej
-
MD5
80450a6fd44277fa7c6883ee59093f72
-
SHA1
d90e1ccec2ff3f552b0e887acd50418a8959c1d1
-
SHA256
ea0af0074cddd3d6de2f641f5f0e7dfb5170dfc44a8661b06075cf32dfc3cf16
-
SHA512
461648a7cba529f6e13da31c1c4f4ad5ce73798a3569d96df65993d1c9c28cdc3750c5b056a1767e45260fd84b76c3fe179ccceea328a17a8182b76a54a0be65
-
SSDEEP
98304:VTH01OZK84868vo7flGArwf9ytPkWQULuYF2YsV3PlokRWS:VTHYiKsAz8ArPqWQULuTykRl
Static task
static1
Behavioral task
behavioral1
Sample
80450a6fd44277fa7c6883ee59093f72.dll
Resource
win7-20231215-en
Malware Config
Extracted
danabot
1827
3
23.106.123.141:443
37.220.31.94:443
23.106.123.185:443
192.210.198.12:443
-
embedded_hash
AEF96B4D339B580ABB737F203C2D0F52
-
type
main
Targets
-
-
Target
80450a6fd44277fa7c6883ee59093f72
-
Size
5.7MB
-
MD5
80450a6fd44277fa7c6883ee59093f72
-
SHA1
d90e1ccec2ff3f552b0e887acd50418a8959c1d1
-
SHA256
ea0af0074cddd3d6de2f641f5f0e7dfb5170dfc44a8661b06075cf32dfc3cf16
-
SHA512
461648a7cba529f6e13da31c1c4f4ad5ce73798a3569d96df65993d1c9c28cdc3750c5b056a1767e45260fd84b76c3fe179ccceea328a17a8182b76a54a0be65
-
SSDEEP
98304:VTH01OZK84868vo7flGArwf9ytPkWQULuYF2YsV3PlokRWS:VTHYiKsAz8ArPqWQULuTykRl
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-