Overview

overview

10

Static

static

10

548-57-0x0...ry.dll

windows7-x64

1

548-57-0x0...ry.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    548-57-0x0000000000140000-0x0000000000162000-memory.dmp

  • Size

    136KB

  • MD5

    ee53e580c68dfc522d1aacf84438aad8

  • SHA1

    bcf467cbf6cd2d71f580608425ae0c3d8329cce7

  • SHA256

    e792c146b197343860d705cacf1404daee519fc2ff2a42d735e16ab990f08f46

  • SHA512

    9df063c63b30433cc682290f9527cd93aa87398c635c988f73e494831ba98975aaabc7cd9bc92bb1c07f8aa2a07324d2a5ac628b823550ec2c677c5d0a8c0cba

  • SSDEEP

    3072:SDlCun69/+nqoy9DhYPpWMLZlTBfpBW1p:S8t9/+ndWaPpJLZlTBBBW

Score
10/10
bb1663658394qakbot

Malware Config

Extracted

Family

qakbot

Version

403.894

Botnet

BB

Campaign

1663658394

C2

66.181.164.43:443

181.118.183.123:443

88.245.168.200:2222

70.49.33.200:2222

193.3.19.37:443

99.232.140.205:2222

110.4.255.247:443

134.35.9.144:443

89.211.217.38:995

64.207.215.69:443

83.110.219.59:993

119.82.111.158:443

197.94.84.128:443

177.255.14.99:995

41.103.226.172:443

109.155.5.164:993

190.44.40.48:995

187.205.222.100:443

41.107.78.223:995

191.97.234.238:995
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 548-57-0x0000000000140000-0x0000000000162000-memory.dmp
    .dll windows x86


    Headers

    Sections