Overview

overview

10

Static

static

10

1748-55-0x...ry.dll

windows7-x64

1

1748-55-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1748-55-0x0000000002A20000-0x0000000003082000-memory.dmp

  • Size

    6.4MB

  • Sample

    240302-kqly5abg8x

  • MD5

    3539d4a846fecf8d703c60198afad275

  • SHA1

    9d827cd6a7d6c3a163081fa51a10b7f63a0e4d2c

  • SHA256

    65711430f7f3f7b1f9b66b0948c4f09015f193bd18ef4d14b15f9578da71ba9a

  • SHA512

    dde9d4f3460bd2cea188c7cf139b98bc02da0d9a0303d1a9035f169c6c1b56d2b645b31e0ea7cd20aa83d8d3f1fb6cca8334d179f64e7c0ef0ec0809febce513

  • SSDEEP

    98304:Bf0uPOC5j1YDyCg6Q4QlxfrARJm5RFniQXHuSgHNuAg+xKVSPT/:Bf0EOCfM5RURFPOSgUi7

Score
10/10
danabot3

Malware Config

Extracted

Family

danabot

Version

1765

Botnet

3

C2

192.236.146.203:443

192.161.48.5:443

142.44.224.16:443

192.3.26.98:443
Attributes
  • embedded_hash

    B2585F6479280F48B64C99F950BBF36D

  • type

    main

rsa_pubkey.plain
rsa_pubkey.plain

Targets

    • Target

      1748-55-0x0000000002A20000-0x0000000003082000-memory.dmp

    • Size

      6.4MB

    • MD5

      3539d4a846fecf8d703c60198afad275

    • SHA1

      9d827cd6a7d6c3a163081fa51a10b7f63a0e4d2c

    • SHA256

      65711430f7f3f7b1f9b66b0948c4f09015f193bd18ef4d14b15f9578da71ba9a

    • SHA512

      dde9d4f3460bd2cea188c7cf139b98bc02da0d9a0303d1a9035f169c6c1b56d2b645b31e0ea7cd20aa83d8d3f1fb6cca8334d179f64e7c0ef0ec0809febce513

    • SSDEEP

      98304:Bf0uPOC5j1YDyCg6Q4QlxfrARJm5RFniQXHuSgHNuAg+xKVSPT/:Bf0EOCfM5RURFPOSgUi7

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks