qakbot | 0902fd50b469df3e0ea9d5c012d9a3cd9a0c194f46baa1474b9a91552e1d5ec4 | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.Kryptik.HDBX.24854
Size

1.8MB
Sample

201109-wyafp4mz2x
MD5

1269023e7adbac9988cbf775a130ca79
SHA1

727d0bd2c778df93091a16a7c2383eb5190af8bb
SHA256

0902fd50b469df3e0ea9d5c012d9a3cd9a0c194f46baa1474b9a91552e1d5ec4
SHA512

b1cf48281d490891515dbea25549855079fbb6aee5d7002b76aaa6d597ee4730bd789802209263f425d0329f1afbbce4ca0808d2b1b1b05ba75b008eb1898eef

Score

10^/10

qakbot banker cryptone packer stealer trojan

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Win32.Kryptik.HDBX.24854
- Size
  
  1.8MB
- MD5
  
  1269023e7adbac9988cbf775a130ca79
- SHA1
  
  727d0bd2c778df93091a16a7c2383eb5190af8bb
- SHA256
  
  0902fd50b469df3e0ea9d5c012d9a3cd9a0c194f46baa1474b9a91552e1d5ec4
- SHA512
  
  b1cf48281d490891515dbea25549855079fbb6aee5d7002b76aaa6d597ee4730bd789802209263f425d0329f1afbbce4ca0808d2b1b1b05ba75b008eb1898eef
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2