Overview

overview

10

Static

static

45406dae6b...58.dll

windows7_x64

10

45406dae6b...58.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45406dae6b2c7383a3464de9112940cc9a388767fa867f17bc2a9c904861b358

  • Size

    2.2MB

  • Sample

    210114-mcywxjdkf6

  • MD5

    b17326235c0b2fed917eb72c9631d9fb

  • SHA1

    330fa1e841a12067a692e88e7fe5f2ab5f3d1929

  • SHA256

    45406dae6b2c7383a3464de9112940cc9a388767fa867f17bc2a9c904861b358

  • SHA512

    a794964260848776d9538f284f69969e520f03565e94cb0ddbed53314978eee7aeb689c29746a5e8ff759ace9f24630a4c0906e1a2c2b02834936b51c80e30e7

Score
10/10
qakbotabc1161608643791bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Botnet

abc116

Campaign

1608643791

C2

24.229.150.54:995

109.154.79.222:2222

184.189.122.72:443

2.88.184.160:443

77.27.174.49:995

86.126.220.127:443

188.253.82.30:995

45.77.115.208:995

67.6.54.180:443

85.52.72.32:2222

2.50.88.125:995

149.28.98.196:2222

37.234.201.55:995

86.98.21.234:443

73.166.10.38:50003

144.202.38.185:2222

45.63.107.192:443

90.61.30.155:2222

94.98.248.152:443

86.127.155.224:443

Targets

    • Target

      45406dae6b2c7383a3464de9112940cc9a388767fa867f17bc2a9c904861b358

    • Size

      2.2MB

    • MD5

      b17326235c0b2fed917eb72c9631d9fb

    • SHA1

      330fa1e841a12067a692e88e7fe5f2ab5f3d1929

    • SHA256

      45406dae6b2c7383a3464de9112940cc9a388767fa867f17bc2a9c904861b358

    • SHA512

      a794964260848776d9538f284f69969e520f03565e94cb0ddbed53314978eee7aeb689c29746a5e8ff759ace9f24630a4c0906e1a2c2b02834936b51c80e30e7

    Score
    10/10
    qakbotabc1161608643791bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks