qakbot | cc0e17c71ad98ad99e8cf36d2faa52b83a8137318932f6b6879dfb7d4431844c | Triage

Sharing

General

Target

SecuriteInfo.com.Troj.Qbot-FS.13218.2878
Size

1.3MB
Sample

201109-qhdse51wls
MD5

5753870132f5070fab94c532dbe5b104
SHA1

a8c3423205eeb6dd34acb984933aaf007ba77d51
SHA256

cc0e17c71ad98ad99e8cf36d2faa52b83a8137318932f6b6879dfb7d4431844c
SHA512

916d2cbd21128b70fa3ac1856737c0e976b24b202c991f08b9b109ee392102908bf6646441c763456e2ffbd2b793c6fdf3b0e027f9493ffe24ad46d4226f29c3

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Troj.Qbot-FS.13218.2878
- Size
  
  1.3MB
- MD5
  
  5753870132f5070fab94c532dbe5b104
- SHA1
  
  a8c3423205eeb6dd34acb984933aaf007ba77d51
- SHA256
  
  cc0e17c71ad98ad99e8cf36d2faa52b83a8137318932f6b6879dfb7d4431844c
- SHA512
  
  916d2cbd21128b70fa3ac1856737c0e976b24b202c991f08b9b109ee392102908bf6646441c763456e2ffbd2b793c6fdf3b0e027f9493ffe24ad46d4226f29c3
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2