qakbot | 9084ca339691e1be6a9c65c1bcb9a404ace163b7ad2e6ea1f55f590d988990e3 | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.Agent.EQDY.30279.19455
Size

2.0MB
Sample

201109-sw5mc2scfe
MD5

8ee2e2ee071e248052de8b9ecd51431b
SHA1

5acc8a6425dc02db5650aa1a4854d192977815cc
SHA256

9084ca339691e1be6a9c65c1bcb9a404ace163b7ad2e6ea1f55f590d988990e3
SHA512

c6818e13db695d916c54c7faf4019815734f482ee8aa2752ff0b310c15a92f120cf2a167a499f3b3ea6f06755ab21de4e3859953dde95585f3ef49dd38881385

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.Agent.EQDY.30279.19455
- Size
  
  2.0MB
- MD5
  
  8ee2e2ee071e248052de8b9ecd51431b
- SHA1
  
  5acc8a6425dc02db5650aa1a4854d192977815cc
- SHA256
  
  9084ca339691e1be6a9c65c1bcb9a404ace163b7ad2e6ea1f55f590d988990e3
- SHA512
  
  c6818e13db695d916c54c7faf4019815734f482ee8aa2752ff0b310c15a92f120cf2a167a499f3b3ea6f06755ab21de4e3859953dde95585f3ef49dd38881385
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2