Overview

overview

10

Static

static

a88f4c170e...b1.dll

windows7_x64

10

a88f4c170e...b1.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a88f4c170e11eda9a789765001a84fb1

  • Size

    271KB

  • Sample

    201126-f1sf56vq3a

  • MD5

    a88f4c170e11eda9a789765001a84fb1

  • SHA1

    b274da255232e48ab19e9b478f29ffd54f885a76

  • SHA256

    ba25af3aa1f14cd574b5f8d43867a0be53d2df9f6fe37116da6dd05446296fb7

  • SHA512

    f5cd24cfd484d0ab54b7b0d0115005ab808d4bdde446380a2d2e9ab5a3f29265152e9139ba79fe8844be658afc7d41641ba71fa4f0fe050db4315d1055c3cf70

Score
10/10
qakbottr021606301054bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Botnet

tr02

Campaign

1606301054

C2

59.98.96.143:443

86.122.248.164:2222

101.185.175.169:2222

71.187.170.235:443

92.59.35.196:2222

188.52.193.110:995

90.175.88.99:2222

37.107.111.46:995

96.237.141.134:995

2.50.143.154:2078

109.205.204.229:2222

90.101.62.189:2222

41.228.220.155:443

190.128.215.174:443

188.26.243.119:443

79.113.247.80:443

82.76.47.211:443

73.248.120.240:443

72.36.59.46:2222

74.129.26.119:443

Targets

    • Target

      a88f4c170e11eda9a789765001a84fb1

    • Size

      271KB

    • MD5

      a88f4c170e11eda9a789765001a84fb1

    • SHA1

      b274da255232e48ab19e9b478f29ffd54f885a76

    • SHA256

      ba25af3aa1f14cd574b5f8d43867a0be53d2df9f6fe37116da6dd05446296fb7

    • SHA512

      f5cd24cfd484d0ab54b7b0d0115005ab808d4bdde446380a2d2e9ab5a3f29265152e9139ba79fe8844be658afc7d41641ba71fa4f0fe050db4315d1055c3cf70

    Score
    10/10
    qakbottr021606301054bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks