[2018-11-08] HookAds->FalloutEK->DanaBot

November 08, 2018

Overview

Saz file is 2018-11-08_20-55-45.saz

(↓Analysis result using EKFiddle)

Malware

DanaBot

23be5918b562ee5945c568432a36c06209ae78c594d80c3d652ba89db468b65e
[Hybrid-Analysis] [VirusTotal]

Traffic-Chain

http[:]//datitngforlivess.info/?activer-mix&source=86013.120052_
↓
https[:]//www.hfbh.pro/unlimited/aboutus
↓
[Fallout Exploit Kit][Landing Page]
http[:]//getmygerpes.press/2008_02_11/galwegian_stamened_Hampshire?lAhkNG=1981_11_27&gxI7f=Unkenned-7234-11713-2199&KDTZg=9RvA2Z4&Bwi3f5j=CB09X
↓
[Fallout Exploit Kit][Malware Payload]
http[:]//getmygerpes.press/7343/Tuareg_wimbled