Overview

overview

10

Static

static

10

1168-57-0x...ry.dll

windows7-x64

1

1168-57-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1168-57-0x0000000000190000-0x00000000001B2000-memory.dmp

  • Size

    136KB

  • Sample

    220915-qebxnsdbe9

  • MD5

    8feba93e211ab79d768e2e5f4d1ef6c2

  • SHA1

    0178a58b28dd99eaedc04fa6cd9150382b5a83df

  • SHA256

    28e082dfa6351c9a26fdea0b8978ab67e2a6f72488dfe3537f0b3e004b8d0772

  • SHA512

    b071269531c8a0eafef0019937dbdef94b19e58efe0acb3d70432f248b628910d5705268262cef901dee7905fd2659a5106d464c7f2baf265fef054692028aaf

  • SSDEEP

    3072:bHQgaOi+EfiOBcnFAshJt5lHdTBfZbel7:jQddfiln2+JvlHdTBxKl

Score
10/10
qakbotbb1663053540

Malware Config

Extracted

Family

qakbot

Version

403.862

Botnet

BB

Campaign

1663053540

C2

194.49.79.231:443

193.3.19.37:443

99.232.140.205:2222

47.146.182.110:443

84.38.133.191:443

191.97.234.238:995

37.210.148.30:995

64.207.215.69:443

200.161.62.126:32101

88.245.103.132:2222

86.98.156.176:993

175.110.231.67:443

78.100.254.17:2222

191.84.204.214:995

123.240.131.1:443

197.94.210.133:443

196.92.172.24:8443

186.50.245.74:995

70.51.132.197:2222

100.1.5.250:995
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      1168-57-0x0000000000190000-0x00000000001B2000-memory.dmp

    • Size

      136KB

    • MD5

      8feba93e211ab79d768e2e5f4d1ef6c2

    • SHA1

      0178a58b28dd99eaedc04fa6cd9150382b5a83df

    • SHA256

      28e082dfa6351c9a26fdea0b8978ab67e2a6f72488dfe3537f0b3e004b8d0772

    • SHA512

      b071269531c8a0eafef0019937dbdef94b19e58efe0acb3d70432f248b628910d5705268262cef901dee7905fd2659a5106d464c7f2baf265fef054692028aaf

    • SSDEEP

      3072:bHQgaOi+EfiOBcnFAshJt5lHdTBfZbel7:jQddfiln2+JvlHdTBxKl

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks