qakbot | 61e1c319c54ed2c6ff60c0fa623f66189aa25a71854e06ffdb408e928bf01832 | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.Kryptik.HDBX.19253
Size

1.8MB
Sample

201109-t8a88k7gfx
MD5

df44e606f03e953e2407f6952993e094
SHA1

001411061628905aaf57e9f9ac4036ceced91f79
SHA256

61e1c319c54ed2c6ff60c0fa623f66189aa25a71854e06ffdb408e928bf01832
SHA512

37ad4cc8dc47c9419dbdea83c252d1c8229325c6f135576f2b7871b5fed22f9bc32603f49f84ca7593c516c0e82aa43498d89aaca7d7413611d3179d3e3c4ca2

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Win32.Kryptik.HDBX.19253
- Size
  
  1.8MB
- MD5
  
  df44e606f03e953e2407f6952993e094
- SHA1
  
  001411061628905aaf57e9f9ac4036ceced91f79
- SHA256
  
  61e1c319c54ed2c6ff60c0fa623f66189aa25a71854e06ffdb408e928bf01832
- SHA512
  
  37ad4cc8dc47c9419dbdea83c252d1c8229325c6f135576f2b7871b5fed22f9bc32603f49f84ca7593c516c0e82aa43498d89aaca7d7413611d3179d3e3c4ca2
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2