qakbot | 30294b7042b6e94b7ac7d2f6641b89017ace586f42143b3b61e4286e2c6e7af8 | Triage

Sharing

General

Target

SecuriteInfo.com.Troj.Qbot-FS.10202.30808
Size

620KB
Sample

201109-2v63fmhzjj
MD5

bbd2a8c5aa09cc56e34f460a5e6d1b50
SHA1

32ca5996c4bdebf749d0bba664f0557032625e17
SHA256

30294b7042b6e94b7ac7d2f6641b89017ace586f42143b3b61e4286e2c6e7af8
SHA512

961926bb28d12d7d98d0cae027a7ce4218d769553e04ce0396be796e2c72c4dfc9962523aa9c8938426c65e16983c87a4513355feeb0e6f30f99f80a9ba919f6

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Troj.Qbot-FS.10202.30808
- Size
  
  620KB
- MD5
  
  bbd2a8c5aa09cc56e34f460a5e6d1b50
- SHA1
  
  32ca5996c4bdebf749d0bba664f0557032625e17
- SHA256
  
  30294b7042b6e94b7ac7d2f6641b89017ace586f42143b3b61e4286e2c6e7af8
- SHA512
  
  961926bb28d12d7d98d0cae027a7ce4218d769553e04ce0396be796e2c72c4dfc9962523aa9c8938426c65e16983c87a4513355feeb0e6f30f99f80a9ba919f6
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2