qakbot | 0a4f88ea8c294059e6bc607c9a8e6678f3beabe786afc055b5d83c6b82d3522d | Triage

Sharing

General

Target

c41a6e17c58f2ef45b83eb163e745ad4
Size

1.0MB
Sample

201214-j2bn5z8thx
MD5

c41a6e17c58f2ef45b83eb163e745ad4
SHA1

4e85f5637caca22ad979412323fa136a11591dad
SHA256

0a4f88ea8c294059e6bc607c9a8e6678f3beabe786afc055b5d83c6b82d3522d
SHA512

c48e453d70a2b035014f39d1b08ae725f2eb2704e11b0078423aae687306882116659d6c6294331ac09c38eb81c2a79957f199a604d0506a2cd45442a0b3caa1

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  c41a6e17c58f2ef45b83eb163e745ad4
- Size
  
  1.0MB
- MD5
  
  c41a6e17c58f2ef45b83eb163e745ad4
- SHA1
  
  4e85f5637caca22ad979412323fa136a11591dad
- SHA256
  
  0a4f88ea8c294059e6bc607c9a8e6678f3beabe786afc055b5d83c6b82d3522d
- SHA512
  
  c48e453d70a2b035014f39d1b08ae725f2eb2704e11b0078423aae687306882116659d6c6294331ac09c38eb81c2a79957f199a604d0506a2cd45442a0b3caa1
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan