General
-
Target
d4010f789559c6c981ab6d80854e9576
-
Size
5.7MB
-
Sample
240318-t69vkadc85
-
MD5
d4010f789559c6c981ab6d80854e9576
-
SHA1
598209c8242bba79d090feb16a80c1326a5617aa
-
SHA256
10eb11561e10d9c483b9acee032cdcfb5ee6218901de951029ddb740b5a99784
-
SHA512
438f238feed48a3bab69ca918ed249e6b7e18e558855fa53283f81097754f350e6f448008d3d1a7d1710319b44fba6a2bbf6019664d09a7bc97ba915d559f0e5
-
SSDEEP
98304:Of6tnZpeMrxxvx714CQQC5KShg5CrW7x6oAiSwD9xde38LB+:BZpeMNxp71xQNoIqoyD9xdg8LB+
Static task
static1
Behavioral task
behavioral1
Sample
d4010f789559c6c981ab6d80854e9576.dll
Resource
win7-20240221-en
Malware Config
Extracted
danabot
1827
3
23.106.123.249:443
23.106.123.141:443
23.254.225.170:443
134.119.186.216:443
-
embedded_hash
AEF96B4D339B580ABB737F203C2D0F52
-
type
main
Targets
-
-
Target
d4010f789559c6c981ab6d80854e9576
-
Size
5.7MB
-
MD5
d4010f789559c6c981ab6d80854e9576
-
SHA1
598209c8242bba79d090feb16a80c1326a5617aa
-
SHA256
10eb11561e10d9c483b9acee032cdcfb5ee6218901de951029ddb740b5a99784
-
SHA512
438f238feed48a3bab69ca918ed249e6b7e18e558855fa53283f81097754f350e6f448008d3d1a7d1710319b44fba6a2bbf6019664d09a7bc97ba915d559f0e5
-
SSDEEP
98304:Of6tnZpeMrxxvx714CQQC5KShg5CrW7x6oAiSwD9xde38LB+:BZpeMNxp71xQNoIqoyD9xdg8LB+
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-