Overview

overview

10

Static

static

ffe8eef3d3...69.exe

windows7_x64

10

ffe8eef3d3...69.exe

windows10_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ffe8eef3d39819b7f645aff69158f469

  • Size

    1.0MB

  • Sample

    201214-qswfek7hmj

  • MD5

    ffe8eef3d39819b7f645aff69158f469

  • SHA1

    1ee81fafb9d404a49a91bcdc6a567ca552496eaa

  • SHA256

    8bb82ff08884c097ed800b513c62461a76353f8d53e6815b5732d86bfeecda26

  • SHA512

    cbe8c9cae62621bc8dbd297ac06866b428f593ef495eb688debd6c8a671bb66df5f8621733322cffb403cad47859f2d6a77af2bfa2f585bf288481bc547de885

Score
10/10
qakbotbankerpersistencestealertrojan

Malware Config

Targets

    • Target

      ffe8eef3d39819b7f645aff69158f469

    • Size

      1.0MB

    • MD5

      ffe8eef3d39819b7f645aff69158f469

    • SHA1

      1ee81fafb9d404a49a91bcdc6a567ca552496eaa

    • SHA256

      8bb82ff08884c097ed800b513c62461a76353f8d53e6815b5732d86bfeecda26

    • SHA512

      cbe8c9cae62621bc8dbd297ac06866b428f593ef495eb688debd6c8a671bb66df5f8621733322cffb403cad47859f2d6a77af2bfa2f585bf288481bc547de885

    Score
    10/10
    qakbotbankerstealertrojanpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Registry Run Keys / Startup Folder

1
T1060

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks