qakbot | ee57658d9452e64a59c91c5f86f30b14b650e716d9cef472e16f7f45f244477e | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.Agent.EQDY.8332.1464
Size

2.0MB
Sample

201109-cgk9py1ltj
MD5

beea5a38dd2c801097ce28c737c5640e
SHA1

497050a91f506e67da74e5c830a6db0726730222
SHA256

ee57658d9452e64a59c91c5f86f30b14b650e716d9cef472e16f7f45f244477e
SHA512

cb80c3c6c51706e4ea79471384d3c474a658652abaf825b2eb11ed74921fa44a6f5a7b0094e2f2f5aa64d846ea0d878705274114b513e040061ee456523dd78f

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.Agent.EQDY.8332.1464
- Size
  
  2.0MB
- MD5
  
  beea5a38dd2c801097ce28c737c5640e
- SHA1
  
  497050a91f506e67da74e5c830a6db0726730222
- SHA256
  
  ee57658d9452e64a59c91c5f86f30b14b650e716d9cef472e16f7f45f244477e
- SHA512
  
  cb80c3c6c51706e4ea79471384d3c474a658652abaf825b2eb11ed74921fa44a6f5a7b0094e2f2f5aa64d846ea0d878705274114b513e040061ee456523dd78f
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2