qakbot | 21da8bd7ecd9892dceff5d83e0cee940d0478d3affd0a7f6122c6b80f5f486ac

General

Target

6714630759809024.zip
Size

208KB
Sample

210608-rrdc66z18s
MD5

af654058962ad92b33f49fec9e5cc431
SHA1

8d065f76ee6c1f58d00b666b1356e1b74a725742
SHA256

21da8bd7ecd9892dceff5d83e0cee940d0478d3affd0a7f6122c6b80f5f486ac
SHA512

c9601e0564899e9678ca0d6d27f483f9f96740f26c08c001931a0dbf8c706aedb5ea2bd9b76d1c0ff48fca019abd4e565fc57dd5663df8fba723ff4c4cfa244d

Score

10^/10

qakbot tr 1618935072 banker stealer trojan

Malware Config

Extracted

Family

qakbot

Version

402.12

Botnet

tr

Campaign

1618935072

C2

140.82.49.12:443

190.85.91.154:443

96.37.113.36:993

71.41.184.10:3389

186.31.46.121:443

73.25.124.140:2222

109.12.111.14:443

24.229.150.54:995

45.32.211.207:443

45.77.117.108:443

45.77.117.108:8443

149.28.98.196:443

149.28.98.196:2222

144.202.38.185:443

144.202.38.185:995

45.32.211.207:995

207.246.116.237:995

149.28.99.97:995

45.63.107.192:2222

149.28.101.90:995

Targets

- Target
  
  2d63f0990103042b8d1e2dca4352342d7584a7cc398db53d92b5d1383f86d06a
- Size
  
  459KB
- MD5
  
  241fd6d8d2d7c79bf85437c772330434
- SHA1
  
  723289f9ebf43f08fcce87c94a3a67b510766aae
- SHA256
  
  2d63f0990103042b8d1e2dca4352342d7584a7cc398db53d92b5d1383f86d06a
- SHA512
  
  2b6e9bb8e8e32b9c16b67f556b6ca2b118856d27259cf31f685f575293fcc20464393445e6ec115dacb00afeaa3c9aa4292e3ef48424b5673d5992375e660b4d
Score

10^/10

qakbot tr 1618935072 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1

T1053

Persistence

Scheduled Task

1

T1053

Privilege Escalation

Scheduled Task

1

T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2