qakbot | 6f603badfe96ba7f8d6ba5c2b815eab659e7af8a856e15e7594d57800e3e5e12 | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.Agent.EQDY.895.3145
Size

2.0MB
Sample

201109-pgwj8gh43a
MD5

3af1f572ea705aed7f84730a710b4222
SHA1

3e0aaed41a8395ed49f16301c2781b8a0d8fa327
SHA256

6f603badfe96ba7f8d6ba5c2b815eab659e7af8a856e15e7594d57800e3e5e12
SHA512

6af836efd5d7ea2f2aabff181d3376d4fabbeb332152af4c96b70c1df9c2ef94395516e43165ef25d66851f46bfbe72e470038307bc1d1defff0d348b07c5c6a

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.Agent.EQDY.895.3145
- Size
  
  2.0MB
- MD5
  
  3af1f572ea705aed7f84730a710b4222
- SHA1
  
  3e0aaed41a8395ed49f16301c2781b8a0d8fa327
- SHA256
  
  6f603badfe96ba7f8d6ba5c2b815eab659e7af8a856e15e7594d57800e3e5e12
- SHA512
  
  6af836efd5d7ea2f2aabff181d3376d4fabbeb332152af4c96b70c1df9c2ef94395516e43165ef25d66851f46bfbe72e470038307bc1d1defff0d348b07c5c6a
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2