qakbot | e2d4138a9cfc5a7f48e45255caf4659ccf16a1517e734931dec0b7bbea4c4e80

General

Target

26527f4b26af56aacd07019521efe2671ee79ea4
Size

349KB
Sample

210315-nnrk32myya
MD5

c48adadc6f93335574d48c30ea5240f8
SHA1

26527f4b26af56aacd07019521efe2671ee79ea4
SHA256

e2d4138a9cfc5a7f48e45255caf4659ccf16a1517e734931dec0b7bbea4c4e80
SHA512

f6caf00e949f3f793936ed0f35558c70f2ab2441ebc0ae823305141177e2fd3e7fd99b0affeb0623fb246dbadbd7f07d439c65252cb530b6f8efb1034d2a0871

Score

10^/10

qakbot tr 1614598087 banker stealer trojan

Malware Config

Extracted

Family

qakbot

Botnet

tr

Campaign

1614598087

C2

24.95.61.62:443

89.3.198.238:443

196.151.252.84:443

90.65.236.181:2222

2.232.253.79:995

217.133.54.140:32100

195.43.173.70:443

84.247.55.190:8443

136.232.34.70:443

45.63.107.192:443

45.77.115.208:443

149.28.98.196:995

45.32.211.207:8443

149.28.98.196:443

149.28.99.97:443

45.63.107.192:2222

207.246.77.75:443

207.246.77.75:8443

45.77.117.108:443

45.32.211.207:995

Targets

- Target
  
  26527f4b26af56aacd07019521efe2671ee79ea4
- Size
  
  349KB
- MD5
  
  c48adadc6f93335574d48c30ea5240f8
- SHA1
  
  26527f4b26af56aacd07019521efe2671ee79ea4
- SHA256
  
  e2d4138a9cfc5a7f48e45255caf4659ccf16a1517e734931dec0b7bbea4c4e80
- SHA512
  
  f6caf00e949f3f793936ed0f35558c70f2ab2441ebc0ae823305141177e2fd3e7fd99b0affeb0623fb246dbadbd7f07d439c65252cb530b6f8efb1034d2a0871
Score

10^/10

qakbot tr 1614598087 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2