Overview

overview

10

Static

static

10

992-57-0x0...ry.dll

windows7-x64

1

992-57-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    992-57-0x00000000003A0000-0x00000000003C9000-memory.dmp

  • Size

    164KB

  • MD5

    fc0c583b904b63196adb01b79729045d

  • SHA1

    2e24a0cb6521cb5d035daf1d2567892900aa775b

  • SHA256

    f1878b71d5f74f3180902d7624acbc593bc512d6aa30147b0ea4c9d0ab5d97c3

  • SHA512

    fdb41637c3b72da1105e3e02dcdadca968af9e616e9e824ad2f65cc4e5696b0ae120186c888a674e366f03f29d51d3a98fa1ec2985b02923af517b565e0ed682

  • SSDEEP

    3072:bOo/zp6GqE14MYjDUOSyqAZ1JEFnCTTBflCyH0O/ya:6o/zzXuMYjDUe/3JqnCTTB9dHf/

Score
10/10
bb041666776497qakbot

Malware Config

Extracted

Family

qakbot

Version

403.1051

Botnet

BB04

Campaign

1666776497

C2

197.204.53.242:443

83.244.63.21:443

27.110.134.202:995

173.49.74.62:443

181.164.194.228:443

24.116.45.121:443

41.47.249.185:443

24.206.27.39:443

113.183.223.8:443

186.188.80.134:443

64.207.237.118:443

156.216.134.70:995

58.247.115.126:995

180.151.116.67:443

41.140.63.187:443

144.202.15.58:443

190.199.97.108:993

172.117.139.142:995

45.230.169.132:995

24.9.220.167:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 992-57-0x00000000003A0000-0x00000000003C9000-memory.dmp
    .dll windows x86


    Headers

    Sections