DanaBot is a blue team lab that falls under the Network Forensics category and will cover the following subjects: Wireshark, Network Miner, ANY.RUN, VirusTotal, Execution, Command and Control.
Learning Objectives
Analyze network traffic using Wireshark to identify DanaBot initial access, deobfuscate malicious JavaScript, and extract IOCs like IPs, file hashes, and execution processes.
Categories: Network Forensics.
MITRE ATT&CK Tactics: Execution, Command and Control.