qakbot | 30dc6ba528ac54f6fb8c18a1a1a8e0e018949d05c608ffe00ce3eb1a4aaaba6b | Triage

Sharing

General

Target

f7b43d6874955f1283b1bf7dcbdba593
Size

1.0MB
Sample

201214-tm753lsbl2
MD5

f7b43d6874955f1283b1bf7dcbdba593
SHA1

e7936dc2d3f9361128d2c87dc1b5e1788d344022
SHA256

30dc6ba528ac54f6fb8c18a1a1a8e0e018949d05c608ffe00ce3eb1a4aaaba6b
SHA512

e3b56111fbfdab4b935a55f1677885aabd9920bf6a2697500c22751440a9173b49aa3074c3dfb6e9bc9737a20afea9be5f35a5d35a40ec9c68bf171c0aa83bac

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  f7b43d6874955f1283b1bf7dcbdba593
- Size
  
  1.0MB
- MD5
  
  f7b43d6874955f1283b1bf7dcbdba593
- SHA1
  
  e7936dc2d3f9361128d2c87dc1b5e1788d344022
- SHA256
  
  30dc6ba528ac54f6fb8c18a1a1a8e0e018949d05c608ffe00ce3eb1a4aaaba6b
- SHA512
  
  e3b56111fbfdab4b935a55f1677885aabd9920bf6a2697500c22751440a9173b49aa3074c3dfb6e9bc9737a20afea9be5f35a5d35a40ec9c68bf171c0aa83bac
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan