Overview

overview

10

Static

static

10

tmp/bfcc44...xe.dll

windows7_x64

1

tmp/bfcc44...xe.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp/bfcc44f774aa4363939aedbf6d19bffe8861a9922fbdf2dc15e8a34580638f9c.exe

  • Size

    183KB

  • Sample

    211214-j2yxdsgdfk

  • MD5

    f8758034552077f77df447ad13ac7b17

  • SHA1

    fe049d1c1957f52569e0984edab19f043b701f10

  • SHA256

    bfcc44f774aa4363939aedbf6d19bffe8861a9922fbdf2dc15e8a34580638f9c

  • SHA512

    a67ec3d01276dbb97900985c4b0efc451b870d46ab5275fd56f996b6e70abe96202326d1489f60f527c4e68ff2716f2b89ea0730a8fe2a714cb1ac7be3318543

Score
10/10
qakbotspx1431592482956

Malware Config

Extracted

Family

qakbot

Version

324.142

Botnet

spx143

Campaign

1592482956

C2

39.36.254.179:995

24.139.132.70:443

24.202.42.48:2222

72.204.242.138:443

172.242.156.50:995

72.204.242.138:20

68.174.15.223:443

74.193.197.246:443

96.56.237.174:990

64.19.74.29:995

70.168.130.172:443

189.236.166.167:443

68.4.137.211:443

76.187.8.160:443

76.86.57.179:2222

73.226.220.56:443

67.250.184.157:443

75.183.171.155:3389

173.172.205.216:443

173.3.132.17:995

Targets

    • Target

      tmp/bfcc44f774aa4363939aedbf6d19bffe8861a9922fbdf2dc15e8a34580638f9c.exe

    • Size

      183KB

    • MD5

      f8758034552077f77df447ad13ac7b17

    • SHA1

      fe049d1c1957f52569e0984edab19f043b701f10

    • SHA256

      bfcc44f774aa4363939aedbf6d19bffe8861a9922fbdf2dc15e8a34580638f9c

    • SHA512

      a67ec3d01276dbb97900985c4b0efc451b870d46ab5275fd56f996b6e70abe96202326d1489f60f527c4e68ff2716f2b89ea0730a8fe2a714cb1ac7be3318543

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks