Overview

overview

10

Static

static

10

b3869c8c61...in.exe

windows7_x64

10

b3869c8c61...in.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b3869c8c61ce01dc2e8ef889c7f9cf5fa0bc92bf529654aae33d07d5fcc18811.bin

  • Size

    203KB

  • Sample

    201214-gj62n48czs

  • MD5

    b118d48f93298898291372087e0e7ba2

  • SHA1

    81e8a390c05feb80c97b081d133f8f541e7b5b5d

  • SHA256

    b3869c8c61ce01dc2e8ef889c7f9cf5fa0bc92bf529654aae33d07d5fcc18811

  • SHA512

    1dd27aebf1a46fba1ec6809e413a38059f26458417910fa59e27004e7344b224a4bb0dce3d132c6cfe36c09f32294f68f933a2784a6a49bef9cdcd7cc47083e4

Score
10/10
qakbotpartner011597332272bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Botnet

partner01

Campaign

1597332272

C2

72.28.255.159:995

197.210.96.222:995

71.192.44.92:443

189.183.72.138:995

68.33.206.204:443

49.191.3.234:443

71.56.53.127:443

80.14.209.42:2222

24.139.132.70:443

76.187.12.181:443

89.137.211.239:443

216.201.162.158:443

151.73.112.220:443

92.59.35.196:2222

189.140.55.226:443

201.216.216.245:443

50.244.112.10:995

108.28.179.42:995

108.27.217.44:443

72.185.47.86:995

Targets

    • Target

      b3869c8c61ce01dc2e8ef889c7f9cf5fa0bc92bf529654aae33d07d5fcc18811.bin

    • Size

      203KB

    • MD5

      b118d48f93298898291372087e0e7ba2

    • SHA1

      81e8a390c05feb80c97b081d133f8f541e7b5b5d

    • SHA256

      b3869c8c61ce01dc2e8ef889c7f9cf5fa0bc92bf529654aae33d07d5fcc18811

    • SHA512

      1dd27aebf1a46fba1ec6809e413a38059f26458417910fa59e27004e7344b224a4bb0dce3d132c6cfe36c09f32294f68f933a2784a6a49bef9cdcd7cc47083e4

    Score
    10/10
    qakbotbankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks