qakbot | d90f5fbff4ba9c5e119ff9a921eff71a043666dc76e3e3b3f7d912b87ae9c1af

General

Target

e6c2777b52416027f1c047a255383d46e4826cbd4f84911d94671b9bb29d3894
Size

396KB
Sample

220515-n8e53seea6
MD5

250439104f92cf2d5498997cf0291e6b
SHA1

68591b017a818d339265c6acf9a6ecb19fc0cd9e
SHA256

d90f5fbff4ba9c5e119ff9a921eff71a043666dc76e3e3b3f7d912b87ae9c1af
SHA512

10ed1cf9692d903ff036d9535d3bb960fb1f86517a9e2d580221f2d47d45a961ea4c1513ef84885816c27acaef78287001f82fce6d6bfc422cecb6e6343fa11e

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

403.683

Botnet

obama182

Campaign

1651756499

C2

103.107.113.120:443

80.11.74.81:2222

177.102.2.175:32101

24.178.196.158:2222

91.177.173.10:995

181.208.248.227:443

176.67.56.94:443

202.134.152.2:2222

148.0.57.85:443

179.179.162.9:993

40.134.246.185:995

37.186.54.254:995

196.203.37.215:80

120.150.218.241:995

208.107.221.224:443

113.53.151.59:443

70.46.220.114:443

69.14.172.24:443

108.60.213.141:443

24.55.67.176:443

Attributes

salt
jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

- Target
  
  e6c2777b52416027f1c047a255383d46e4826cbd4f84911d94671b9bb29d3894
- Size
  
  679KB
- MD5
  
  c019e6e884111c417654a878b33c9690
- SHA1
  
  1dbaef4c7d519111cf576c9efd127128f8b204fd
- SHA256
  
  e6c2777b52416027f1c047a255383d46e4826cbd4f84911d94671b9bb29d3894
- SHA512
  
  ebf723f3927c28188b243025aa92f6ab7608bfa26f55d3f304e0a9da644a588374c393f63fee6d061dd98aa9902d07b2bee8c26e83fd02c90453d3535f8aad8f
Score

10^/10

qakbot obama182 1651756499 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1

T1053

Persistence

Scheduled Task

1

T1053

Privilege Escalation

Scheduled Task

1

T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2