Overview

overview

10

Static

static

test.test.dll

windows7_x64

10

test.test.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    test.test

  • Size

    754KB

  • Sample

    211021-w1jgjabeej

  • MD5

    3ce0ae3de42da2dac1ef87f94921facb

  • SHA1

    233a3c69e30bda4a5a92735cda8b30b2ad99252f

  • SHA256

    e072cf4eebd73cb8072c1ce938e2df6d3d864ddd116336f79f804dfa634edb5e

  • SHA512

    5036d39d0966ffb1780c2c4f3a2b5c8635e4607daad723557390d0c46426c497565e9cd9136d371365881bb08303f4bc9806585ce2c9ee9735d6e8ca1666ea02

Score
10/10
qakbottr1634541613bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

402.363

Botnet

tr

Campaign

1634541613

C2

120.150.218.241:995

24.119.214.7:443

103.143.8.71:443

81.241.252.59:2078

81.250.153.227:2222

174.54.193.186:443

73.52.50.32:443

39.49.122.240:995

86.220.112.26:2222

103.82.211.39:465

78.191.38.33:995

216.201.162.158:443

181.118.183.94:443

66.177.215.152:0

208.78.220.143:443

94.200.181.154:443

136.232.34.70:443

136.143.11.232:443

81.213.59.22:443

103.82.211.39:990
Attributes
  • salt

    jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

    • Target

      test.test

    • Size

      754KB

    • MD5

      3ce0ae3de42da2dac1ef87f94921facb

    • SHA1

      233a3c69e30bda4a5a92735cda8b30b2ad99252f

    • SHA256

      e072cf4eebd73cb8072c1ce938e2df6d3d864ddd116336f79f804dfa634edb5e

    • SHA512

      5036d39d0966ffb1780c2c4f3a2b5c8635e4607daad723557390d0c46426c497565e9cd9136d371365881bb08303f4bc9806585ce2c9ee9735d6e8ca1666ea02

    Score
    10/10
    qakbottr1634541613bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks