qakbot | a94291cc6f39425c30d1152a83ae122c0c8f10c8bf2f77c94542bbb30203aa94 | Triage

Sharing

General

Target

44363.6460833333.dat
Size

893KB
Sample

210616-3ft4xlfdgj
MD5

f2d9c653be1d8fe82ed9c1029c2a18e8
SHA1

2a96a55156b761e5e29144789f1661a5f719b76f
SHA256

a94291cc6f39425c30d1152a83ae122c0c8f10c8bf2f77c94542bbb30203aa94
SHA512

84368bd91f8bb1e6f7a1dfcb63edf2a5fb564238c55d9013eba200b7332c39e4577c6d14f261d610d0a150ee47685680947f4f476477c999ee83dcbc83e8e440

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  44363.6460833333.dat
- Size
  
  893KB
- MD5
  
  f2d9c653be1d8fe82ed9c1029c2a18e8
- SHA1
  
  2a96a55156b761e5e29144789f1661a5f719b76f
- SHA256
  
  a94291cc6f39425c30d1152a83ae122c0c8f10c8bf2f77c94542bbb30203aa94
- SHA512
  
  84368bd91f8bb1e6f7a1dfcb63edf2a5fb564238c55d9013eba200b7332c39e4577c6d14f261d610d0a150ee47685680947f4f476477c999ee83dcbc83e8e440
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan