qakbot | 6d8ef65670101ecf342152a34ae4b17784186759686c0e5eb631a9fa47315647

General

Target

1.dll
Size

716KB
Sample

220412-vwegcahdc2
MD5

726a41b2959768c5c3d2c7c213e6d0d8
SHA1

e28186bc0d771d20527b5f80757f4ee3f0ce442e
SHA256

6d8ef65670101ecf342152a34ae4b17784186759686c0e5eb631a9fa47315647
SHA512

4c349bc12d66be7abde0af38491ce082a9e13036db882bfaeff3ee6ede650c070b1c0f73bea18ae75d7eaff457436a04f0467d50c45c077162e63487cb5a7f34

Score

10^/10

qakbot aa 1649749884 banker stealer trojan

Malware Config

Extracted

Family

qakbot

Version

403.573

Botnet

AA

Campaign

1649749884

C2

120.150.218.241:995

186.64.67.38:443

196.203.37.215:80

1.161.71.109:443

82.152.39.39:443

76.69.155.202:2222

72.66.116.235:995

103.107.113.120:443

113.11.89.165:995

208.107.221.224:443

103.88.226.30:443

75.99.168.194:443

75.113.214.234:2222

76.169.147.192:32103

190.73.3.148:2222

39.52.2.90:995

38.70.253.226:2222

5.95.58.211:2087

74.15.2.252:2222

76.70.9.169:2222

Attributes

salt
jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

- Target
  
  1.dll
- Size
  
  716KB
- MD5
  
  726a41b2959768c5c3d2c7c213e6d0d8
- SHA1
  
  e28186bc0d771d20527b5f80757f4ee3f0ce442e
- SHA256
  
  6d8ef65670101ecf342152a34ae4b17784186759686c0e5eb631a9fa47315647
- SHA512
  
  4c349bc12d66be7abde0af38491ce082a9e13036db882bfaeff3ee6ede650c070b1c0f73bea18ae75d7eaff457436a04f0467d50c45c077162e63487cb5a7f34
Score

10^/10

qakbot aa 1649749884 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2