SentinelOne vs DanaBot (v4) – Detect Mode

The latest version of DanaBot (v4) has been making the rounds since late 2020 and appears to be on an upswing regarding campaign/activity. While DanaBot started as a trojan, newer versions encompass modules that propel DanaBot into RAT (remote access trojan). New modules include the ability to identify and harvest browser data, keylogging, remote connectivity (RDP or VNC), screen/video capture, browser session hijacking).