Overview

overview

10

Static

static

10

3152-139-0...ry.dll

windows7-x64

3

3152-139-0...ry.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3152-139-0x00000000031D0000-0x00000000031F9000-memory.dmp

  • Size

    164KB

  • MD5

    61beabbe58bc6457ac69b855a299aee9

  • SHA1

    5ba89ea383ed56ddfacf64538ddc6fb633f188cf

  • SHA256

    019b7182e18db1e20423ce67f1b2b82e3610f3e9dc4b0cc46adbf414844f8788

  • SHA512

    d4d4850e28e740908db728a67f5a8be58ecb47141dfeda7ea6d5bb738ea46b64b6d3d1384a00123394858566e13ed1b1ca1b91e82e41c05743fdaabdcc20ef0f

  • SSDEEP

    3072:9xaAhdgSnBi0z6gP7AtJkuD74TBf5H/6oqO/ya:5hdgSBi0z62stJJD74TBxH/fF/

Score
10/10
bb031666073717qakbot

Malware Config

Extracted

Family

qakbot

Version

403.973

Botnet

BB03

Campaign

1666073717

C2

190.199.99.171:993

41.69.192.245:443

167.58.254.85:443

206.1.172.1:443

5.163.177.234:443

134.35.0.103:443

105.96.221.136:443

41.101.100.7:443

186.177.93.18:2222

78.179.135.247:443

177.205.74.14:2222

102.47.218.41:443

102.156.149.226:443

41.250.48.206:443

41.107.58.251:443

187.198.16.39:443

193.201.187.64:443

41.102.134.89:443

102.159.77.134:995

105.159.49.123:995
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 3152-139-0x00000000031D0000-0x00000000031F9000-memory.dmp
    .dll windows x86


    Headers

    Sections