General

  • Target

    doc_pack-2017890076.xlsb

  • Size

    24KB

  • Sample

    201029-9mt3h2yn1e

  • MD5

    0dd93a295012d433702b43104395b52e

  • SHA1

    63027a5336bba876c58361ac29642b2fa731d274

  • SHA256

    7766064e2c684ea3c9427810e402adffadd9baa2b599604caacd57825d32bf26

  • SHA512

    ba65cbd43126f1565ceb2109ec1dbec168d0b62409e4d7e5e90e8332141da6c2e47193dd044f5a8d02d47763430dc62d1766737984575c7ea8f2fe1900986522

Malware Config

Extracted

Family

qakbot

Botnet

tr01

Campaign

1603793855

C2

50.104.68.223:443

89.137.211.239:443

95.77.223.148:443

197.37.69.138:993

68.174.15.223:443

103.238.231.35:443

36.77.151.211:443

72.16.56.171:443

45.47.65.191:443

189.231.212.189:443

106.51.52.111:443

24.55.66.125:443

39.37.247.97:995

108.190.151.108:2222

203.198.96.61:443

73.228.1.246:443

35.134.202.234:443

188.50.230.249:995

86.120.64.150:2222

5.14.126.153:443

Targets

    • Target

      doc_pack-2017890076.xlsb

    • Size

      24KB

    • MD5

      0dd93a295012d433702b43104395b52e

    • SHA1

      63027a5336bba876c58361ac29642b2fa731d274

    • SHA256

      7766064e2c684ea3c9427810e402adffadd9baa2b599604caacd57825d32bf26

    • SHA512

      ba65cbd43126f1565ceb2109ec1dbec168d0b62409e4d7e5e90e8332141da6c2e47193dd044f5a8d02d47763430dc62d1766737984575c7ea8f2fe1900986522

MITRE ATT&CK Enterprise v6

Tasks