Overview

overview

10

Static

static

62d47e3ab5...52.dll

windows7_x64

10

62d47e3ab5...52.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    62d47e3ab5b21a156a4dd3a541d1b2d25fb78f4409f686750fcc7fb56d16a152

  • Size

    337KB

  • Sample

    220309-s4fy2aaag2

  • MD5

    0224cade7ce38c717489fb3d36ff9388

  • SHA1

    c531204c91dab26b69eb1b69dc8ee3aabfbdaf2b

  • SHA256

    62d47e3ab5b21a156a4dd3a541d1b2d25fb78f4409f686750fcc7fb56d16a152

  • SHA512

    64375e66675b58f90b53565b97effe9bd4f9a4581bc77ed700e70454a97f1983655f4836708332a7c4e265ba2055a5e659709b10a7d927447a8d56600157863b

Score
10/10
qakbotabc106m1606921461bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

401.51

Botnet

abc106m

Campaign

1606921461

C2

94.69.242.254:2222

189.140.45.48:995

37.182.244.124:2222

73.136.242.114:443

187.149.126.53:443

189.210.115.207:443

96.27.47.70:2222

185.163.221.77:2222

85.132.36.111:2222

178.87.10.110:443

120.150.218.241:995

68.224.121.148:993

78.101.145.96:61201

47.146.34.236:443

24.95.61.62:443

72.29.181.78:2222

93.113.177.152:443

87.218.53.206:2222

106.51.85.162:443

2.90.33.130:443
Attributes
  • salt

    jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

    • Target

      62d47e3ab5b21a156a4dd3a541d1b2d25fb78f4409f686750fcc7fb56d16a152

    • Size

      337KB

    • MD5

      0224cade7ce38c717489fb3d36ff9388

    • SHA1

      c531204c91dab26b69eb1b69dc8ee3aabfbdaf2b

    • SHA256

      62d47e3ab5b21a156a4dd3a541d1b2d25fb78f4409f686750fcc7fb56d16a152

    • SHA512

      64375e66675b58f90b53565b97effe9bd4f9a4581bc77ed700e70454a97f1983655f4836708332a7c4e265ba2055a5e659709b10a7d927447a8d56600157863b

    Score
    10/10
    qakbotabc106m1606921461bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks