General
-
Target
8528cc723325363250b7594b8cb9c02b
-
Size
3.7MB
-
Sample
240131-1pk87sfabm
-
MD5
8528cc723325363250b7594b8cb9c02b
-
SHA1
ecd81154d5c430f518dea5d98eecaecf3b00f592
-
SHA256
1e885f80bf1583a56385ef6e9104ef2a2c8ae7078a0c849cdbe786ea7f227894
-
SHA512
01eae3751ec90b8f38efb1d1e2c8fcf45a343e81cab754a87a48d0ce26035cc8d4b8248c1c5e9becab0ee4ed812cbe9a9ea972b4d3f217bb50b458a76ad27400
-
SSDEEP
98304:2kLxK0bSqF+SDTZhgXRoj5uQG0spYLTMxhqlIZWn:BjbSf+TnIO5/G6lI
Static task
static1
Behavioral task
behavioral1
Sample
8528cc723325363250b7594b8cb9c02b.dll
Resource
win7-20231129-en
Malware Config
Extracted
danabot
1732
3
192.241.101.68:443
23.226.132.92:443
108.62.141.152:443
108.62.118.103:443
-
embedded_hash
49574F66CD0103BBD725C08A9805C2BE
-
type
main
Targets
-
-
Target
8528cc723325363250b7594b8cb9c02b
-
Size
3.7MB
-
MD5
8528cc723325363250b7594b8cb9c02b
-
SHA1
ecd81154d5c430f518dea5d98eecaecf3b00f592
-
SHA256
1e885f80bf1583a56385ef6e9104ef2a2c8ae7078a0c849cdbe786ea7f227894
-
SHA512
01eae3751ec90b8f38efb1d1e2c8fcf45a343e81cab754a87a48d0ce26035cc8d4b8248c1c5e9becab0ee4ed812cbe9a9ea972b4d3f217bb50b458a76ad27400
-
SSDEEP
98304:2kLxK0bSqF+SDTZhgXRoj5uQG0spYLTMxhqlIZWn:BjbSf+TnIO5/G6lI
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-