qakbot | e67b69fccb26927dd5152080d9516ed2b8dd49a425ec427ea280f034827bf51c | Triage

Sharing

General

Target

ebfe505d1a1d2b9b7c409499f49c31d6
Size

1.0MB
Sample

201214-j3977nx296
MD5

ebfe505d1a1d2b9b7c409499f49c31d6
SHA1

89a2224c080d192696e3151364a250ae8780a52c
SHA256

e67b69fccb26927dd5152080d9516ed2b8dd49a425ec427ea280f034827bf51c
SHA512

f5002c0768c3d2881dab30ec03d871a4d132b28cf5d04e92d1dc19f2037e4637011c39027f42fda62c428ff09bf2389b84e397b4486132a5d471ccfddea60edb

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  ebfe505d1a1d2b9b7c409499f49c31d6
- Size
  
  1.0MB
- MD5
  
  ebfe505d1a1d2b9b7c409499f49c31d6
- SHA1
  
  89a2224c080d192696e3151364a250ae8780a52c
- SHA256
  
  e67b69fccb26927dd5152080d9516ed2b8dd49a425ec427ea280f034827bf51c
- SHA512
  
  f5002c0768c3d2881dab30ec03d871a4d132b28cf5d04e92d1dc19f2037e4637011c39027f42fda62c428ff09bf2389b84e397b4486132a5d471ccfddea60edb
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan