qakbot | 187570073544ada10dff94724a1f76c2565232d0a2c0448ee18fcdbe204d3010

General

Target

1988-58-0x00000000008B0000-0x00000000008D2000-memory.dmp
Size

136KB
Sample

220908-phw7caeeg5
MD5

d3c9033085631f091c79ffe93e4521fc
SHA1

a153a63ae80f45a7639770bcc8e5bd92a43ff502
SHA256

187570073544ada10dff94724a1f76c2565232d0a2c0448ee18fcdbe204d3010
SHA512

2404bcd095bd5fa2b7ca4c0ad95ed808bef5344fb36e9aaefaa7fd968115ada6348188521f8b56fb92fc239d590006a0d6467971cd02b41b4c11287870d42fd1
SSDEEP

3072:usYXmPYG7NsZBkWs2ksvAT5JZrdRoTBf1P8aFA+:8OYG7kBRs2lY9JpdRoTBtEIZ

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

403.858

Botnet

snow01

Campaign

1662453469

C2

200.161.62.126:32101

217.165.68.122:993

99.232.140.205:2222

81.131.161.131:2078

89.211.179.14:2222

186.64.87.202:443

197.94.210.133:443

193.3.19.37:443

37.210.148.30:995

200.100.55.252:32101

70.51.153.182:2222

120.150.218.241:995

173.189.167.21:995

24.139.72.117:443

104.34.212.7:32103

47.23.89.61:995

24.55.67.176:443

172.115.177.204:2222

217.165.77.134:995

24.178.196.158:2222

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  1988-58-0x00000000008B0000-0x00000000008D2000-memory.dmp
- Size
  
  136KB
- MD5
  
  d3c9033085631f091c79ffe93e4521fc
- SHA1
  
  a153a63ae80f45a7639770bcc8e5bd92a43ff502
- SHA256
  
  187570073544ada10dff94724a1f76c2565232d0a2c0448ee18fcdbe204d3010
- SHA512
  
  2404bcd095bd5fa2b7ca4c0ad95ed808bef5344fb36e9aaefaa7fd968115ada6348188521f8b56fb92fc239d590006a0d6467971cd02b41b4c11287870d42fd1
- SSDEEP
  
  3072:usYXmPYG7NsZBkWs2ksvAT5JZrdRoTBf1P8aFA+:8OYG7kBRs2lY9JpdRoTBtEIZ
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2