General
-
Target
289a8f84ee503723580e7bc00d5b2bc4e627b6fd48221e7d4643423039f049e7
-
Size
220KB
-
Sample
220708-jxb7tsaeb8
-
MD5
224bdea92bebe3a7e0815c18f690c345
-
SHA1
128273c0fee349c45bf6382516ae9bf24f40f405
-
SHA256
eab569ced9b5143e5aaa6de1f92de85e4c51252ae05b1566c0fa2dd138989ef9
-
SHA512
51964d518189e8d5a6b0331883fcef9f384787de2de5223be466cf9ef5850f07b87e77f19bbaf9376b6c445a45dba24ab3e3e24e0b07efff6187eb482e8c29b7
Malware Config
Extracted
qakbot
403.780
obama195
1656400725
74.14.5.179:2222
104.34.212.7:32103
142.186.49.224:2222
93.48.80.198:995
94.59.15.180:2222
217.128.122.65:2222
45.241.173.232:993
24.43.99.75:443
89.101.97.139:443
70.46.220.114:443
32.221.224.140:995
67.209.195.198:443
37.34.253.233:443
80.11.74.81:2222
81.214.215.234:443
67.165.206.193:993
173.174.216.62:443
186.90.153.162:2222
148.64.96.100:443
176.205.23.138:2222
-
salt
jHxastDcds)oMc=jvh7wdUhxcsdt2
Targets
-
-
Target
289a8f84ee503723580e7bc00d5b2bc4e627b6fd48221e7d4643423039f049e7
-
Size
370KB
-
MD5
63ea24b74d903d0e934c0c7eb50396f0
-
SHA1
805285666bf500b6cc0e438a568866023a46a898
-
SHA256
289a8f84ee503723580e7bc00d5b2bc4e627b6fd48221e7d4643423039f049e7
-
SHA512
b9192ae52051cf18080666f59051d9c21781a3e967f190d26a34cb580de6955bdb7aca4bcbb0170136b406410f7ec3342b2b70878390794a91e1aa4fc0296a1f
Score10/10-
Qakbot/Qbot
Qbot or Qakbot is a sophisticated worm with banking capabilities.
-