Overview

overview

10

Static

static

10

540-59-0x0...ry.dll

windows7-x64

1

540-59-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    540-59-0x0000000000580000-0x00000000005A9000-memory.dmp

  • Size

    164KB

  • MD5

    b10473e594e1ae95c397b7fbf76a5cd9

  • SHA1

    2b41636361343e459f12b277e88bff45bee189eb

  • SHA256

    0ff8082612fea9af60b5115e495ff0b2bd308923b00bf4feb9a5d9a5f26091e5

  • SHA512

    20e969dbf73c5a4db3b45ecfa9fea461061e65d12c3e9061e0c14d09f979a4d50e09d01dc2485a9df7d1809ad2e9a28b6ed76f029e2f87492406e091577d6891

  • SSDEEP

    3072:TxhftscIhZ73JVq2EAHJ2fjXPTBfZEy3QO/ya:9hftBIh13JjRHJKjXPTBxT3z/

Score
10/10
bb041666690935qakbot

Malware Config

Extracted

Family

qakbot

Version

403.1051

Botnet

BB04

Campaign

1666690935

C2

181.164.194.228:443

24.116.45.121:443

190.74.248.136:443

24.206.27.39:443

27.110.134.202:995

2.88.206.121:443

71.199.168.185:443

200.233.108.153:995

198.2.51.242:993

172.117.139.142:995

70.115.104.126:443

144.202.15.58:443

190.24.45.24:995

24.9.220.167:443

58.247.115.126:995

193.3.19.137:443

45.230.169.132:995

68.62.199.70:443

43.241.159.238:443

113.162.196.232:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 540-59-0x0000000000580000-0x00000000005A9000-memory.dmp
    .dll windows x86


    Headers

    Sections