Overview

overview

10

Static

static

10

1196-57-0x...ry.dll

windows7-x64

3

1196-57-0x...ry.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1196-57-0x0000000000340000-0x0000000000369000-memory.dmp

  • Size

    164KB

  • MD5

    67520bb0a35feacf7402d76a05b86c1b

  • SHA1

    1ecaa31b90bafccb6bb9685fc6bc4f31c445e975

  • SHA256

    554173b63a641238b31fc7a9bc22c970963d98e6afc82990871c3e3dc08c0de2

  • SHA512

    e8d684404424b6bd8622d5c0c634c55bba646e6053b700ff623bbbb50eae178f743a08de8900b17d30467cc9891cb54a86145aeb37c2a0a99097576892b0eaf0

  • SSDEEP

    3072:7YYJlVf1FGI1X3FARJm1eLVITBfpd/6oUO/ya:nJlVf/GI1n2RJMeLVITBBd/v//

Score
10/10
bb021665761649qakbot

Malware Config

Extracted

Family

qakbot

Version

403.973

Botnet

BB02

Campaign

1665761649

C2

211.47.11.62:33850

104.233.202.195:443

105.156.242.71:443

45.230.169.132:995

181.197.41.173:443

197.0.89.147:443

191.254.53.134:995

190.204.74.4:2222

46.185.147.165:443

190.26.159.133:995

177.205.74.14:2222

197.63.250.197:993

45.230.169.132:443

156.212.50.148:443

193.27.13.28:32100

190.200.10.82:2222

31.166.182.166:443

179.105.182.216:995

193.201.187.64:443

1.53.101.75:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 1196-57-0x0000000000340000-0x0000000000369000-memory.dmp
    .dll windows x86


    Headers

    Sections