Overview

overview

10

Static

static

10

1972-57-0x...ry.dll

windows7-x64

1

1972-57-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    1972-57-0x0000000000B90000-0x0000000000BB9000-memory.dmp

  • Size

    164KB

  • MD5

    df7cd3ca0bc26bf1c0475180288ba2d5

  • SHA1

    d8a43d442ddd80e552d840522e9b9d5e9f8ec1c5

  • SHA256

    b559449aeb82bf389a6e1b158138ca0b93b677013c35b91928bade450f1deeab

  • SHA512

    770bb2516447f2e9d1b669b140fe546233980cfc02b311c94cbe076be54aba86631a003b1a90cf1247c7e730f539a254d1d82d36026a7f7f794e80c63c706c0b

  • SSDEEP

    3072:CsvBmWVj4NaxPoAPJjllEATBfZ6/6oUO/ya:CsBmujQa9tPJBlEATBx6/v//

Score
10/10
bb021665761649qakbot

Malware Config

Extracted

Family

qakbot

Version

403.973

Botnet

BB02

Campaign

1665761649

C2

211.47.11.62:33850

104.233.202.195:443

105.156.242.71:443

45.230.169.132:995

181.197.41.173:443

197.0.89.147:443

191.254.53.134:995

190.204.74.4:2222

46.185.147.165:443

190.26.159.133:995

177.205.74.14:2222

197.63.250.197:993

45.230.169.132:443

156.212.50.148:443

193.27.13.28:32100

190.200.10.82:2222

31.166.182.166:443

179.105.182.216:995

193.201.187.64:443

1.53.101.75:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 1972-57-0x0000000000B90000-0x0000000000BB9000-memory.dmp
    .dll windows x86


    Headers

    Sections