a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9 | Triage

Submit
Reports

Overview

overview

Static

static

a0268a57ed...e9.dll

windows7-x64

a0268a57ed...e9.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9.dll

Resource

win7-20220901-en

qakbot banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9.dll

Resource

win10v2004-20220812-en

qakbot banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9
Size

598KB
MD5

1f7404e81bbf92731877ef805e7ddc9e
SHA1

a88cc56559eb5a2cbc36b8abf2cf598f22a5949a
SHA256

a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9
SHA512

55f7b766c2d44c97d0c73b80b64bf0abf86f2455712f4ae40a08727f8746c33fd61a8881e57de2e4ee136973ca6ccc891c36065e7eb241abfefb5e82a012c2f8
SSDEEP

12288:LC8gCmO9UjQexY7U3KYamzrbAPLcYshNsPtLa/Kw08hxDV:LC8gHO9UjQJ7U3KnirbjYsooKwxDV

Score

N/A

Malware Config

Signatures

Files

a0268a57eddd489c02bcec5a7cfba2491700a0344bb40a294d2b0d9eff7a9de9
.dll regsvr32 windows x86

adb63404f98d8725720dc3b9811d9ace

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
SetEndOfFile
CloseHandle
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
WaitForSingleObject
OpenThread
VirtualAlloc
GetModuleHandleA
GetProcAddress
SwitchToFiber
CreateFiber
ConvertThreadToFiber
CreateFileMappingA
LoadLibraryA
GetTempPathA
CreateActCtxA
ReleaseActCtx
ActivateActCtx
DeactivateActCtx

Exports

Exports

DQFiFa0y
DllRegisterServer

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 263KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy