Overview

overview

10

Static

static

10

484aa7139e...69.dll

windows7_x64

10

484aa7139e...69.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    484aa7139e61f466aadc3bfbfafb19c9b0b46753431eec1dd00c7cec27231f69

  • Size

    408KB

  • MD5

    b4e811abbbf0d4bd450c770060711e03

  • SHA1

    6992cf181ce54ef41b02d5c376f3e947dd763699

  • SHA256

    484aa7139e61f466aadc3bfbfafb19c9b0b46753431eec1dd00c7cec27231f69

  • SHA512

    c3ff11834cb6a45a687a616905c133ed2f6ed2db7fe1d8619c7cafa356ae20b1714ac5cf758a30ee1b731902db3fff7057f0d55058fc54017b72bc0557cba592

  • SSDEEP

    12288:505lg5OIp/2mmtutvFlsipnb/TTuiUIC:505l2nnl53TuiC

Score
10/10
gml011647501143qakbot

Malware Config

Extracted

Family

qakbot

Version

403.549

Botnet

gml01

Campaign

1647501143

C2

76.69.155.202:2222

75.99.168.194:443

129.208.30.2:995

93.48.80.198:995

108.60.213.141:443

176.67.56.94:443

148.64.96.100:443

47.180.172.159:443

47.51.47.182:995

2.42.176.91:443

140.82.49.12:443

197.167.5.180:993

131.154.102.171:32100

86.195.158.178:2222

114.79.148.170:443

201.176.1.223:995

217.165.79.31:443

24.43.99.75:443

5.32.41.45:443

180.129.97.57:995
Attributes
  • salt

    jHxastDcds)oMc=jvh7wdUhxcsdt2

Signatures

Files

  • 484aa7139e61f466aadc3bfbfafb19c9b0b46753431eec1dd00c7cec27231f69
    .dll regsvr32 windows x86

    898ae83d196651683fa2c0e49adbf703


    Headers

    Imports

    Exports

    Sections