qakbot | fe281548b6876588af513b971df1d11ee8b917cdb3fbc36c206ccb5a7e6805e3

General

Target

fe281548b6876588af513b971df1d11ee8b917cdb3fbc36c206ccb5a7e6805e3
Size

488KB
Sample

220128-qh6w8adff2
MD5

bd4044386fd1e6dddff3e68771d4e6e6
SHA1

c440df49be8940d163f4be3f6faa7adaff4f6b4b
SHA256

fe281548b6876588af513b971df1d11ee8b917cdb3fbc36c206ccb5a7e6805e3
SHA512

1fc328e1a358af67f875427eeaac7ce8d3b821248e7c3ca33b38bfedb4eead7811538952b63cc7c3559a2bcde25e801846e5a650407dd45bce5658648d0f848a

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

402.318

Botnet

clinton30

Campaign

1632229091

C2

47.22.148.6:443

24.55.112.61:443

140.82.49.12:443

24.139.72.117:443

136.232.34.70:443

24.229.150.54:995

71.74.12.34:443

73.151.236.31:443

120.150.218.241:995

105.198.236.99:443

76.25.142.196:443

45.46.53.140:2222

144.139.47.206:443

96.37.113.36:993

173.21.10.71:2222

67.165.206.193:993

189.210.115.207:443

109.12.111.14:443

68.204.7.158:443

95.77.223.148:443

Attributes

salt
jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

- Target
  
  fe281548b6876588af513b971df1d11ee8b917cdb3fbc36c206ccb5a7e6805e3
- Size
  
  488KB
- MD5
  
  bd4044386fd1e6dddff3e68771d4e6e6
- SHA1
  
  c440df49be8940d163f4be3f6faa7adaff4f6b4b
- SHA256
  
  fe281548b6876588af513b971df1d11ee8b917cdb3fbc36c206ccb5a7e6805e3
- SHA512
  
  1fc328e1a358af67f875427eeaac7ce8d3b821248e7c3ca33b38bfedb4eead7811538952b63cc7c3559a2bcde25e801846e5a650407dd45bce5658648d0f848a
Score

10^/10

qakbot clinton30 1632229091 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1

T1053

Persistence

Scheduled Task

1

T1053

Privilege Escalation

Scheduled Task

1

T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2