qb[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

71e4f7864d...02.dll

windows7-x64

71e4f7864d...02.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

71e4f7864d915a86246aa892fa2d48579f441627156bd3cf65508dce6acf9d02.dll

Resource

win7-20220901-en

qakbot notset 1632819510 banker evasion stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

71e4f7864d915a86246aa892fa2d48579f441627156bd3cf65508dce6acf9d02.dll

Resource

win10v2004-20220812-en

qakbot notset 1632819510 banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

qb.zip
Size

318KB
MD5

5feb039fbe607afa531c65fbc7618ad0
SHA1

2b71b494b31229873c8baf3bde5de6031f96d8ee
SHA256

c0f7ebcd16182e2d5d5e05c310f161eb61eb0c20569827a09e65c1f93a866de0
SHA512

fa4edf23251f693de82af0adec7819d0ad335f5fc2b44e5af70fd9f59303a5f5c3e0a035da67ebc9df3d4e203ec6f7ad47e68d8ad726f6713d31c8033cde847d
SSDEEP

6144:fvySkvOT5Hj1L1fZ4VsgD0ZQIV4bQ1vZjPZ8uDCsc2c7ro+:fv/uOp1L0VsgD4duEvJPZ88YjD

Score

N/A

Malware Config

Signatures

Files

qb.zip
.zip

Password: infected
71e4f7864d915a86246aa892fa2d48579f441627156bd3cf65508dce6acf9d02
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy