General

  • Target

    5672-174-0x0000000000E40000-0x0000000000E62000-memory.dmp

  • Size

    136KB

  • MD5

    53c6c615805b44902fa73ce4d06616e1

  • SHA1

    7e5afa1335ddef09357ab77c89ef8a731a39ebb0

  • SHA256

    317c53f6066fc136894531b6ee76f852469bff2d0fd6f46f33f0cb14d596ea95

  • SHA512

    319544ac8143f7928c5dc9fc2d063897d8a89566586bf9f5828d1fe82228b0cbe4bcde13a1d84b9581fa8402a03e9db67278cad4f2d75d251facf31dcca8205b

  • SSDEEP

    3072:nSWQLL2z6nMcoJdP5iACPJnDLboTBfJ1Yq5:nU2OnMVJdRnCPJDLboTBh6q5

Score
10/10

Malware Config

Extracted

Family

qakbot

C2

78.94.148.92:1753

134.180.185.240:32987

201.136.101.182:38323

124.77.95.5:46163

196.90.29.190:30693

187.144.110.117:36330

10.44.33.140:65267

162.117.200.91:29984

159.254.223.192:31154

11.239.81.233:37

31.248.76.23:24072

224.77.182.18:55579

124.230.27.11:44408

205.255.39.94:54675

192.1.213.104:14212

145.3.120.239:20068

242.199.30.106:9157

243.240.195.106:42825

74.234.32.185:42698

102.51.5.67:47820

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 5672-174-0x0000000000E40000-0x0000000000E62000-memory.dmp
    .dll windows x86


    Headers

    Sections