Overview

overview

10

Static

static

2222222.jpg.dll

windows7_x64

10

2222222.jpg.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2222222.jpg

  • Size

    707KB

  • Sample

    201218-bs92dcsx32

  • MD5

    4477659f8b962a817217dee76434f086

  • SHA1

    3cceb14a9498cb379c551d1be30780ce015c5e44

  • SHA256

    85f223a19dab44487676d212c315a7893fb1a38ee0ae53904eee2955dd7e4601

  • SHA512

    a0504a885adf1ca0d5b1ede2dc3d96ca0fb660a9b355023c5b368fb7bd87c77f8a56f2526091f9d0de3e7ba2d527cca071c31960624982785023382ea65d8bda

Score
10/10
qakbotabc1151608200390bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Botnet

abc115

Campaign

1608200390

C2

95.76.27.6:443

35.139.242.207:443

93.86.1.159:995

190.30.186.43:443

151.60.38.21:443

5.2.212.254:443

39.36.112.67:995

78.63.226.32:443

68.131.19.52:443

86.121.43.200:443

47.44.217.98:443

5.204.148.208:995

2.91.235.94:443

217.133.54.140:32100

86.121.3.80:443

82.76.47.211:443

5.193.148.126:2078

109.205.204.229:2222

82.12.157.95:995

45.77.115.208:2222

Targets

    • Target

      2222222.jpg

    • Size

      707KB

    • MD5

      4477659f8b962a817217dee76434f086

    • SHA1

      3cceb14a9498cb379c551d1be30780ce015c5e44

    • SHA256

      85f223a19dab44487676d212c315a7893fb1a38ee0ae53904eee2955dd7e4601

    • SHA512

      a0504a885adf1ca0d5b1ede2dc3d96ca0fb660a9b355023c5b368fb7bd87c77f8a56f2526091f9d0de3e7ba2d527cca071c31960624982785023382ea65d8bda

    Score
    10/10
    qakbotabc1151608200390bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks