Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

benin.dat.3.dll

windows7-x64

10

benin.dat.3.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    benin.dat.3.vir

  • Size

    422KB

  • Sample

    221028-q4ckhagcan

  • MD5

    a2714f8819c1f7d8609f3e82b8e1d531

  • SHA1

    dd69500de27704000dced76bafed8bcac859b6ea

  • SHA256

    9d0e9183b88823f5a401ef5cc0f32fd47f7a8270073acc8ec1baf5abfe4fd104

  • SHA512

    cdc2210e31fd0871f8289ae09d1666a68f26cd6719c0eec43effdc34d4873c2ce332bf68d37022e0dca4459113e06c27460244fc9250fc6d8f42777f484bfe64

  • SSDEEP

    12288:eqdD/sblafl4M/8toGXJZ6diNj6o8Ywr6t57AKC:eqdclafl4eGXuiNp8Ye6c

Score
10/10
qakbotbb041666863946bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

404.2

Botnet

BB04

Campaign

1666863946

C2

27.110.134.202:995

1.156.220.47:17155

186.188.80.134:443

1.190.199.101:9480

187.1.1.181:42178

118.200.83.226:443

187.0.1.144:51727

193.3.19.137:443

1.201.68.209:12157

188.49.56.189:443

187.0.1.14:58271

190.74.248.136:443

201.210.92.3:2222

187.0.1.105:40325

64.123.103.123:443

41.97.169.44:443

72.88.245.71:443

187.0.1.45:59049

41.100.163.127:443

187.0.1.83:62527
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Extracted

Family

qakbot

Attributes
  • salt

    �Ku���s�-�6��=RH��L�ۓZ6פQ�~�O�^-t�c8e���PA�F*��\S��a ~�)/�Ƚ�6Rju��Y�d����E�̠�E��:�w 5�� �m��N��Ӿ�[V� <W 1��7 Y7�Az�h�NN�}��9� �r�[�N�"��{��u9�����X"�t���x�� ����<�-|����44�'xJζ�,�$�)3��$k-ӥi�,�n␩��趟�����Ï KF �:J�e6cl-u2f�~+��ٌc�6����9��}�*���s�0d���Ι�l�����D�������{)a��A2

Targets

    • Target

      benin.dat.3.vir

    • Size

      422KB

    • MD5

      a2714f8819c1f7d8609f3e82b8e1d531

    • SHA1

      dd69500de27704000dced76bafed8bcac859b6ea

    • SHA256

      9d0e9183b88823f5a401ef5cc0f32fd47f7a8270073acc8ec1baf5abfe4fd104

    • SHA512

      cdc2210e31fd0871f8289ae09d1666a68f26cd6719c0eec43effdc34d4873c2ce332bf68d37022e0dca4459113e06c27460244fc9250fc6d8f42777f484bfe64

    • SSDEEP

      12288:eqdD/sblafl4M/8toGXJZ6diNj6o8Ywr6t57AKC:eqdclafl4eGXuiNp8Ye6c

    Score
    10/10
    qakbotbb041666863946bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks