qakbot | ff6c9bfc959ce469816ce6802470e01cafcaa0c2cbf37b587d6932419d5377f8

General

Target

668-58-0x0000000000290000-0x00000000002BA000-memory.dmp
Size

168KB
Sample

221103-kq21caagbp
MD5

52638d9fac54f1513e4d3208876c3318
SHA1

6eb2bfb69802b30797f99a765c9f12f0d11dd9af
SHA256

ff6c9bfc959ce469816ce6802470e01cafcaa0c2cbf37b587d6932419d5377f8
SHA512

4adb81c0d2705531860dc8b12d9cf9f429488f7e5302b7d3488d377e764dccaf4014d8be68410460548a3742d994c3a6ff1c2463fa78497d3be3cec5f495d21c
SSDEEP

3072:4/DJ4IxCNt2IXyRNAUJA8V2CQTBfJjgM2O/yaxX1:qguIXyROUJ3VfQTBBjD5/

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.14

Botnet

obama220

Campaign

1667373670

C2

174.0.224.214:443

1.70.60.142:54792

74.33.84.227:443

1.175.205.2:13825

187.1.1.45:12681

190.24.45.24:995

1.50.68.204:18177

193.3.19.137:443

1.41.44.11:58115

73.165.119.20:443

58.247.115.126:995

1.84.35.26:3587

216.82.134.218:443

1.181.164.194:58369

187.1.1.74:23795

71.199.168.185:443

1.94.49.5:29697

187.0.1.108:11471

186.73.140.43:443

1.97.119.214:59649

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  668-58-0x0000000000290000-0x00000000002BA000-memory.dmp
- Size
  
  168KB
- MD5
  
  52638d9fac54f1513e4d3208876c3318
- SHA1
  
  6eb2bfb69802b30797f99a765c9f12f0d11dd9af
- SHA256
  
  ff6c9bfc959ce469816ce6802470e01cafcaa0c2cbf37b587d6932419d5377f8
- SHA512
  
  4adb81c0d2705531860dc8b12d9cf9f429488f7e5302b7d3488d377e764dccaf4014d8be68410460548a3742d994c3a6ff1c2463fa78497d3be3cec5f495d21c
- SSDEEP
  
  3072:4/DJ4IxCNt2IXyRNAUJA8V2CQTBfJjgM2O/yaxX1:qguIXyROUJ3VfQTBBjD5/
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2