Overview

overview

10

Static

static

10

968-62-0x0...ry.dll

windows7-x64

1

968-62-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    968-62-0x00000000000E0000-0x0000000000102000-memory.dmp

  • Size

    136KB

  • Sample

    220914-bsb29shab6

  • MD5

    59c9a7b066dd9d2c252ced10627bae7b

  • SHA1

    41e97c3c9ff5cac7c2b716d83fee1a885e57618b

  • SHA256

    a63e2fb066eb5b59c2927cc380b5496d65a9cd9e063e9dfaa0336ea0708bfd4a

  • SHA512

    073ee3085fb550c16c447923cfbae58eb2a81c7f6cf8427a42752da2fec5a99801505b0cadadea37e294c283d3c575ade69ae6f6700240941cccf8c7b8af8c05

  • SSDEEP

    1536:2AqgB1lCniheeCZZoDYKsH1EWF/Ee5hiBAL1+J1kycmqkIO9nToIf97YegrzkO:2ApkZoUK6v/EC6AYJOyHn1TBf9se5O

Score
10/10
qakbotbb1663053540

Malware Config

Extracted

Family

qakbot

Version

403.862

Botnet

BB

Campaign

1663053540

C2

194.49.79.231:443

193.3.19.37:443

99.232.140.205:2222

47.146.182.110:443

84.38.133.191:443

191.97.234.238:995

37.210.148.30:995

64.207.215.69:443

200.161.62.126:32101

88.245.103.132:2222

86.98.156.176:993

175.110.231.67:443

78.100.254.17:2222

191.84.204.214:995

123.240.131.1:443

197.94.210.133:443

196.92.172.24:8443

186.50.245.74:995

70.51.132.197:2222

100.1.5.250:995
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      968-62-0x00000000000E0000-0x0000000000102000-memory.dmp

    • Size

      136KB

    • MD5

      59c9a7b066dd9d2c252ced10627bae7b

    • SHA1

      41e97c3c9ff5cac7c2b716d83fee1a885e57618b

    • SHA256

      a63e2fb066eb5b59c2927cc380b5496d65a9cd9e063e9dfaa0336ea0708bfd4a

    • SHA512

      073ee3085fb550c16c447923cfbae58eb2a81c7f6cf8427a42752da2fec5a99801505b0cadadea37e294c283d3c575ade69ae6f6700240941cccf8c7b8af8c05

    • SSDEEP

      1536:2AqgB1lCniheeCZZoDYKsH1EWF/Ee5hiBAL1+J1kycmqkIO9nToIf97YegrzkO:2ApkZoUK6v/EC6AYJOyHn1TBf9se5O

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks