qakbot | 1faabeb9d5c142c810b1e133993d40ac2112c597e845bea9ef5760a6180bb98d | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.Kryptik.HDBX.22599
Size

1.8MB
Sample

201109-gmzks58fmn
MD5

7eef2a0c32c0258553ed43ce2748c0e7
SHA1

d64083b16a2d719e80f5f5e087c46259c343ffdd
SHA256

1faabeb9d5c142c810b1e133993d40ac2112c597e845bea9ef5760a6180bb98d
SHA512

0bdaa5b817b4fb6c38434afff457a87622589c842fc504bd344e4a038799673f35c06c0126a5c14a1adf3b83fca804225ff1ce686dec780f07f7c7941a690e82

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Win32.Kryptik.HDBX.22599
- Size
  
  1.8MB
- MD5
  
  7eef2a0c32c0258553ed43ce2748c0e7
- SHA1
  
  d64083b16a2d719e80f5f5e087c46259c343ffdd
- SHA256
  
  1faabeb9d5c142c810b1e133993d40ac2112c597e845bea9ef5760a6180bb98d
- SHA512
  
  0bdaa5b817b4fb6c38434afff457a87622589c842fc504bd344e4a038799673f35c06c0126a5c14a1adf3b83fca804225ff1ce686dec780f07f7c7941a690e82
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2