qakbot | 84dfe210ebb5f7a5bde949389fd767c963cdd3f02d35ab416dcc472274cd0cfe | Triage

Sharing

General

Target

ead6969fa1f83d62e946e6e44c9ade31
Size

1.0MB
Sample

201214-ehmrgz3e4a
MD5

ead6969fa1f83d62e946e6e44c9ade31
SHA1

8708437b1d09e76ed79dc497dbebb4bcf86d1d84
SHA256

84dfe210ebb5f7a5bde949389fd767c963cdd3f02d35ab416dcc472274cd0cfe
SHA512

661cdd6e0280dd55ea24b2caf845d5d38e7221123cac5789254a2f9216ebddc6aeb67dd93589fec72ad801d11d4454e2dba04732d7fbcb270350b7a49ae5d1b0

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  ead6969fa1f83d62e946e6e44c9ade31
- Size
  
  1.0MB
- MD5
  
  ead6969fa1f83d62e946e6e44c9ade31
- SHA1
  
  8708437b1d09e76ed79dc497dbebb4bcf86d1d84
- SHA256
  
  84dfe210ebb5f7a5bde949389fd767c963cdd3f02d35ab416dcc472274cd0cfe
- SHA512
  
  661cdd6e0280dd55ea24b2caf845d5d38e7221123cac5789254a2f9216ebddc6aeb67dd93589fec72ad801d11d4454e2dba04732d7fbcb270350b7a49ae5d1b0
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan