qakbot | 75bd9e581d48f304bec7cf8f07fc56937501e67a578d33252915b455fc2506f1 | Triage

Sharing

General

Target

f1fb3abb2393f77b6192945aa277151d
Size

893KB
Sample

210616-vgrq9g83jn
MD5

f1fb3abb2393f77b6192945aa277151d
SHA1

f62a31eb33e26cabdbd3ef843bd19c95df47dcdb
SHA256

75bd9e581d48f304bec7cf8f07fc56937501e67a578d33252915b455fc2506f1
SHA512

2037d379bf63b064ae1ed350dded6ebf73dd23002933d64de7d379995f21c21959369934e903f8ab94099db9c40b2f609e873245d1c6b7f57680d3796031f3d0

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  f1fb3abb2393f77b6192945aa277151d
- Size
  
  893KB
- MD5
  
  f1fb3abb2393f77b6192945aa277151d
- SHA1
  
  f62a31eb33e26cabdbd3ef843bd19c95df47dcdb
- SHA256
  
  75bd9e581d48f304bec7cf8f07fc56937501e67a578d33252915b455fc2506f1
- SHA512
  
  2037d379bf63b064ae1ed350dded6ebf73dd23002933d64de7d379995f21c21959369934e903f8ab94099db9c40b2f609e873245d1c6b7f57680d3796031f3d0
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan