Overview

overview

10

Static

static

10

2024-57-0x...ry.dll

windows7_x64

1

2024-57-0x...ry.dll

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-57-0x00000000003E0000-0x0000000000402000-memory.dmp

  • Size

    136KB

  • Sample

    220709-jekq9achan

  • MD5

    ed337c2ebf32552d0534f5a06d4eeeca

  • SHA1

    6e1487e0b451f97c2e38c70e2b85a4fd7b55268e

  • SHA256

    e9e52ea73f5f0d78db418def94253e61ff8c5cbe04e0fa53662e602660294bd0

  • SHA512

    1956ba4a421395b480bf8d02ae1ad31780a9c365daf6e4c670ed72f30b55f030250d5ae3dbbe59e3390ab13e587ea632573d6075811a9d0a59c72d71471dd2cd

Score
10/10
qakbotobama1991657265474

Malware Config

Extracted

Family

qakbot

Version

403.780

Botnet

obama199

Campaign

1657265474

C2

121.7.223.45:2222

67.209.195.198:443

148.64.96.100:443

92.132.132.81:2222

217.128.122.65:2222

47.180.172.159:443

173.174.216.62:443

70.46.220.114:443

32.221.224.140:995

69.14.172.24:443

117.248.109.38:21

94.59.15.180:2222

38.70.253.226:2222

217.165.157.202:995

41.228.22.180:443

67.165.206.193:993

172.115.177.204:2222

186.90.153.162:2222

47.23.89.60:993

120.150.218.241:995
Attributes
  • salt

    jHxastDcds)oMc=jvh7wdUhxcsdt2

Targets

    • Target

      2024-57-0x00000000003E0000-0x0000000000402000-memory.dmp

    • Size

      136KB

    • MD5

      ed337c2ebf32552d0534f5a06d4eeeca

    • SHA1

      6e1487e0b451f97c2e38c70e2b85a4fd7b55268e

    • SHA256

      e9e52ea73f5f0d78db418def94253e61ff8c5cbe04e0fa53662e602660294bd0

    • SHA512

      1956ba4a421395b480bf8d02ae1ad31780a9c365daf6e4c670ed72f30b55f030250d5ae3dbbe59e3390ab13e587ea632573d6075811a9d0a59c72d71471dd2cd

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks